apphtml5 customer account csrf

app/apphtml5/modules/Customer/controllers/AccountController.php

@@ -20,25 +20,25 @@ class AccountController extends AppfrontController
 {
     //protected $_registerSuccessRedirectUrlKey = 'customer/account';
 
-    public $enableCsrfValidation = false;
+    public $enableCsrfValidation = true;
 
     public function init()
     {
         parent::init();
     }
 
-        /**
-         * 账户中心.
-         */
-        public function actionIndex()
-        {
-            if (Yii::$app->user->isGuest) {
-                return Yii::$service->url->redirectByUrlKey('customer/account/login');
-            }
-            $data = $this->getBlock()->getLastData();
-
-            return $this->render($this->action->id, $data);
+    /**
+     * 账户中心.
+     */
+    public function actionIndex()
+    {
+        if (Yii::$app->user->isGuest) {
+            return Yii::$service->url->redirectByUrlKey('customer/account/login');
         }
+        $data = $this->getBlock()->getLastData();
+
+        return $this->render($this->action->id, $data);
+    }
 
    /**
     * 登录.

app/apphtml5/modules/Customer/controllers/EditaccountController.php

@@ -18,7 +18,7 @@ use Yii;
  */
 class EditaccountController extends AppfrontController
 {
-    //protected $_registerSuccessRedirectUrlKey = 'customer/account';
+    public $enableCsrfValidation = true;
 
     public function init()
     {

app/apphtml5/modules/Customer/controllers/FacebookController.php

@@ -18,7 +18,7 @@ use Yii;
  */
 class FacebookController extends AppfrontController
 {
-    // http://fecshop.apphtml5.fancyecommerce.com/customer/facebook/loginv
+    public $enableCsrfValidation = false;
     /**
      * facebook 账号在facebook确认后，返回网站的url地址。
      */