In my default config file I have:
$dolibarr_nocsrfcheck=‘0’;
And there are no coding comments as to what the value ‘0’ or ‘1’ or any other would mean.
Does the value ‘0’ mean that this is preventing cross scripting security issues OR does it mean that it is turn off opening the site to security issues?
This came to my attention because while trying to get the MyDoli App to to connect to Dolibarr for remote management, it would not connect unless $dolibarr_nocsrfcheck was changed to ‘1’.
So if I change it to ‘1’ for MyDoli access, am I now opening a security issue.
Thanks