From: Victor Saar <victor.saar@publicispixelpark.de>
Date: Wed, 4 Jan 2017 09:21:39 +0000 (+0100)
Subject: sirona - Allow form and CSRF protection requests
X-Git-Tag: v0.1.0~3689^2
X-Git-Url: https://git.uhu-banane.de/?a=commitdiff_plain;h=e256f0cfef7e2b1f24b8728b2c62293cf4451cca;p=pixelpark%2Fhiera.git

sirona - Allow form and CSRF protection requests
---

diff --git a/customer/sirona-aem/test.yaml b/customer/sirona-aem/test.yaml
index 446bff5a..0a73bef6 100644
--- a/customer/sirona-aem/test.yaml
+++ b/customer/sirona-aem/test.yaml
@@ -298,6 +298,8 @@ aem::dispatcher::publish_farm:
       - { type: 'allow', url: '/libs/cq/personalization/*' } # enable personalization
       - { type: 'allow', url: '/content/dam/api.json' } # enable generic asset JSON API
       - { type: 'allow', url: '*.assetlibrary.json' } # enable asset library JSON API
+      - { type: 'allow', method: 'post', url: '*.forms.html' } # enable forms
+      - { type: 'allow', url: '/libs/granite/csrf/token.json' } # enable CSRF token
       # Deny content grabbing
       - { type: 'deny', url: '*.infinity.json' }
       - { type: 'deny', url: '*.tidy.json'     }