No OneTemporary
Actions

Size

71 KB

Referenced Files

None

Subscribers

None

View Options

	diff --git a/src/__celerity_resource_map__.php b/src/__celerity_resource_map__.php
	index 2f6d320118..ffd9140dda 100644
	--- a/src/__celerity_resource_map__.php
	+++ b/src/__celerity_resource_map__.php
	@@ -1,1449 +1,1449 @@
	<?php

	/**
	* This file is automatically generated. Use 'celerity_mapper.php' to rebuild
	* it.
	* @generated
	*/

	celerity_register_resource_map(array(
	'aphront-attached-file-view-css' =>
	array(
	'uri' => '/res/a6ca5487/rsrc/css/aphront/attached-file-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/attached-file-view.css',
	),
	'aphront-calendar-view-css' =>
	array(
	'uri' => '/res/7036c676/rsrc/css/aphront/calendar-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/calendar-view.css',
	),
	'aphront-contextbar-view-css' =>
	array(
	'uri' => '/res/3e2f3045/rsrc/css/aphront/context-bar.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/context-bar.css',
	),
	'aphront-crumbs-view-css' =>
	array(
	'uri' => '/res/9009e6bd/rsrc/css/aphront/crumbs-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/crumbs-view.css',
	),
	'aphront-dark-console-css' =>
	array(
	'uri' => '/res/1a9f84bb/rsrc/css/aphront/dark-console.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/dark-console.css',
	),
	'aphront-dialog-view-css' =>
	array(
	'uri' => '/res/61a58113/rsrc/css/aphront/dialog-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/dialog-view.css',
	),
	'aphront-error-view-css' =>
	array(
	'uri' => '/res/e4c5e4ed/rsrc/css/aphront/error-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/error-view.css',
	),
	'aphront-form-view-css' =>
	array(
	'uri' => '/res/c79fd668/rsrc/css/aphront/form-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/form-view.css',
	),
	'aphront-headsup-action-list-view-css' =>
	array(
	'uri' => '/res/84743e20/rsrc/css/aphront/headsup-action-list-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/headsup-action-list-view.css',
	),
	'aphront-list-filter-view-css' =>
	array(
	'uri' => '/res/0f5ddaba/rsrc/css/aphront/list-filter-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/list-filter-view.css',
	),
	'aphront-pager-view-css' =>
	array(
	'uri' => '/res/43fb79f0/rsrc/css/aphront/pager-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/pager-view.css',
	),
	'aphront-panel-view-css' =>
	array(
	'uri' => '/res/58da9c70/rsrc/css/aphront/panel-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/panel-view.css',
	),
	'aphront-request-failure-view-css' =>
	array(
	'uri' => '/res/c9a43002/rsrc/css/aphront/request-failure-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/request-failure-view.css',
	),
	'aphront-side-nav-view-css' =>
	array(
	'uri' => '/res/f92966bd/rsrc/css/aphront/side-nav-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/side-nav-view.css',
	),
	'aphront-table-view-css' =>
	array(
	'uri' => '/res/f4f39a2e/rsrc/css/aphront/table-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/table-view.css',
	),
	'aphront-tokenizer-control-css' =>
	array(
	'uri' => '/res/f530af47/rsrc/css/aphront/tokenizer.css',
	'type' => 'css',
	'requires' =>
	array(
	0 => 'aphront-typeahead-control-css',
	),
	'disk' => '/rsrc/css/aphront/tokenizer.css',
	),
	'aphront-typeahead-control-css' =>
	array(
	'uri' => '/res/a05236a6/rsrc/css/aphront/typeahead.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/aphront/typeahead.css',
	),
	'differential-changeset-view-css' =>
	array(
	'uri' => '/res/59279999/rsrc/css/application/differential/changeset-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/differential/changeset-view.css',
	),
	'differential-core-view-css' =>
	array(
	'uri' => '/res/438fe316/rsrc/css/application/differential/core.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/differential/core.css',
	),
	'differential-inline-comment-editor' =>
	array(
	'uri' => '/res/5e4f0aa4/rsrc/js/application/differential/DifferentialInlineCommentEditor.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-dom',
	1 => 'javelin-workflow',
	2 => 'javelin-util',
	3 => 'javelin-stratcom',
	4 => 'javelin-install',
	),
	'disk' => '/rsrc/js/application/differential/DifferentialInlineCommentEditor.js',
	),
	'differential-revision-add-comment-css' =>
	array(
	'uri' => '/res/849748d3/rsrc/css/application/differential/add-comment.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/differential/add-comment.css',
	),
	'differential-revision-comment-css' =>
	array(
	'uri' => '/res/9fb8013b/rsrc/css/application/differential/revision-comment.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/differential/revision-comment.css',
	),
	'differential-revision-comment-list-css' =>
	array(
	'uri' => '/res/3b31faa3/rsrc/css/application/differential/revision-comment-list.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/differential/revision-comment-list.css',
	),
	'differential-revision-detail-css' =>
	array(
	'uri' => '/res/015e5995/rsrc/css/application/differential/revision-detail.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/differential/revision-detail.css',
	),
	'differential-revision-history-css' =>
	array(
	'uri' => '/res/0d7d515d/rsrc/css/application/differential/revision-history.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/differential/revision-history.css',
	),
	'differential-table-of-contents-css' =>
	array(
	'uri' => '/res/d173445b/rsrc/css/application/differential/table-of-contents.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/differential/table-of-contents.css',
	),
	'diffusion-commit-view-css' =>
	array(
	'uri' => '/res/bc39d876/rsrc/css/application/diffusion/commit-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/diffusion/commit-view.css',
	),
	'diffusion-source-css' =>
	array(
	'uri' => '/res/db4566b6/rsrc/css/application/diffusion/diffusion-source.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/diffusion/diffusion-source.css',
	),
	'files-css' =>
	array(
	'uri' => '/res/a265a77d/rsrc/css/application/files/files.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/files/files.css',
	),
	'herald-css' =>
	array(
	'uri' => '/res/5051f3ab/rsrc/css/application/herald/herald.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/herald/herald.css',
	),
	'herald-rule-editor' =>
	array(
	'uri' => '/res/4d6dff2b/rsrc/js/application/herald/HeraldRuleEditor.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'multirow-row-manager',
	1 => 'javelin-install',
	2 => 'javelin-typeahead',
	3 => 'javelin-util',
	4 => 'javelin-dom',
	5 => 'javelin-tokenizer',
	6 => 'javelin-typeahead-preloaded-source',
	7 => 'javelin-stratcom',
	8 => 'javelin-json',
	9 => 'phabricator-prefab',
	),
	'disk' => '/rsrc/js/application/herald/HeraldRuleEditor.js',
	),
	'herald-test-css' =>
	array(
	'uri' => '/res/c0cd6bdb/rsrc/css/application/herald/herald-test.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/herald/herald-test.css',
	),
	'javelin-behavior' =>
	array(
	'uri' => '/res/b28adfa1/rsrc/js/javelin/lib/behavior.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-magical-init',
	),
	'disk' => '/rsrc/js/javelin/lib/behavior.js',
	),
	'javelin-behavior-aphront-basic-tokenizer' =>
	array(
	'uri' => '/res/5e183bd5/rsrc/js/application/core/behavior-tokenizer.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-typeahead',
	2 => 'javelin-tokenizer',
	3 => 'javelin-typeahead-preloaded-source',
	4 => 'javelin-dom',
	5 => 'javelin-stratcom',
	),
	'disk' => '/rsrc/js/application/core/behavior-tokenizer.js',
	),
	'javelin-behavior-aphront-drag-and-drop' =>
	array(
	'uri' => '/res/170115f4/rsrc/js/application/core/behavior-drag-and-drop.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	2 => 'javelin-util',
	3 => 'phabricator-drag-and-drop-file-upload',
	),
	'disk' => '/rsrc/js/application/core/behavior-drag-and-drop.js',
	),
	'javelin-behavior-aphront-drag-and-drop-textarea' =>
	array(
	'uri' => '/res/fa7527f9/rsrc/js/application/core/behavior-drag-and-drop-textarea.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	2 => 'phabricator-drag-and-drop-file-upload',
	),
	'disk' => '/rsrc/js/application/core/behavior-drag-and-drop-textarea.js',
	),
	'javelin-behavior-aphront-form-disable-on-submit' =>
	array(
	'uri' => '/res/6c659ede/rsrc/js/application/core/behavior-form.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-stratcom',
	2 => 'javelin-dom',
	),
	'disk' => '/rsrc/js/application/core/behavior-form.js',
	),
	'javelin-behavior-countdown-timer' =>
	array(
	'uri' => '/res/9eef8193/rsrc/js/application/countdown/timer.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	2 => 'javelin-util',
	),
	'disk' => '/rsrc/js/application/countdown/timer.js',
	),
	'javelin-behavior-dark-console' =>
	array(
	'uri' => '/res/c80156c4/rsrc/js/application/core/behavior-dark-console.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-stratcom',
	2 => 'javelin-util',
	3 => 'javelin-dom',
	4 => 'javelin-request',
	5 => 'phabricator-keyboard-shortcut',
	),
	'disk' => '/rsrc/js/application/core/behavior-dark-console.js',
	),
	'javelin-behavior-differential-accept-with-errors' =>
	array(
	'uri' => '/res/41c4685b/rsrc/js/application/differential/behavior-accept-with-errors.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	),
	'disk' => '/rsrc/js/application/differential/behavior-accept-with-errors.js',
	),
	'javelin-behavior-differential-add-reviewers-and-ccs' =>
	array(
	'uri' => '/res/fc352745/rsrc/js/application/differential/behavior-add-reviewers-and-ccs.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	2 => 'javelin-tokenizer',
	3 => 'javelin-typeahead',
	4 => 'javelin-typeahead-preloaded-source',
	),
	'disk' => '/rsrc/js/application/differential/behavior-add-reviewers-and-ccs.js',
	),
	'javelin-behavior-differential-comment-jump' =>
	array(
	'uri' => '/res/be77fced/rsrc/js/application/differential/behavior-comment-jump.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-util',
	2 => 'javelin-dom',
	),
	'disk' => '/rsrc/js/application/differential/behavior-comment-jump.js',
	),
	'javelin-behavior-differential-diff-radios' =>
	array(
	'uri' => '/res/004cb66f/rsrc/js/application/differential/behavior-diff-radios.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-stratcom',
	2 => 'javelin-dom',
	),
	'disk' => '/rsrc/js/application/differential/behavior-diff-radios.js',
	),
	'javelin-behavior-differential-edit-inline-comments' =>
	array(
	'uri' => '/res/9d4ca5d7/rsrc/js/application/differential/behavior-edit-inline-comments.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-stratcom',
	2 => 'javelin-dom',
	3 => 'javelin-util',
	4 => 'javelin-vector',
	5 => 'differential-inline-comment-editor',
	),
	'disk' => '/rsrc/js/application/differential/behavior-edit-inline-comments.js',
	),
	'javelin-behavior-differential-feedback-preview' =>
	array(
	'uri' => '/res/ab8a7d60/rsrc/js/application/differential/behavior-comment-preview.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-stratcom',
	2 => 'javelin-dom',
	3 => 'javelin-request',
	4 => 'javelin-util',
	5 => 'phabricator-shaped-request',
	),
	'disk' => '/rsrc/js/application/differential/behavior-comment-preview.js',
	),
	'javelin-behavior-differential-keyboard-navigation' =>
	array(
	'uri' => '/res/e36415a2/rsrc/js/application/differential/behavior-keyboard-nav.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	2 => 'phabricator-keyboard-shortcut',
	),
	'disk' => '/rsrc/js/application/differential/behavior-keyboard-nav.js',
	),
	'javelin-behavior-differential-populate' =>
	array(
	'uri' => '/res/6efe5cd2/rsrc/js/application/differential/behavior-populate.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-workflow',
	2 => 'javelin-util',
	3 => 'javelin-dom',
	),
	'disk' => '/rsrc/js/application/differential/behavior-populate.js',
	),
	'javelin-behavior-differential-show-all-comments' =>
	array(
	'uri' => '/res/bcc990f0/rsrc/js/application/differential/behavior-show-all-comments.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-stratcom',
	2 => 'javelin-dom',
	),
	'disk' => '/rsrc/js/application/differential/behavior-show-all-comments.js',
	),
	'javelin-behavior-differential-show-more' =>
	array(
	'uri' => '/res/eaaccd7a/rsrc/js/application/differential/behavior-show-more.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	2 => 'javelin-workflow',
	3 => 'javelin-util',
	4 => 'javelin-stratcom',
	),
	'disk' => '/rsrc/js/application/differential/behavior-show-more.js',
	),
	'javelin-behavior-diffusion-jump-to' =>
	array(
	'uri' => '/res/4b63e436/rsrc/js/application/diffusion/behavior-jump-to.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-util',
	2 => 'javelin-vector',
	3 => 'javelin-dom',
	),
	'disk' => '/rsrc/js/application/diffusion/behavior-jump-to.js',
	),
	'javelin-behavior-diffusion-pull-lastmodified' =>
	array(
	'uri' => '/res/29fe2790/rsrc/js/application/diffusion/behavior-pull-lastmodified.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	2 => 'javelin-util',
	3 => 'javelin-request',
	),
	'disk' => '/rsrc/js/application/diffusion/behavior-pull-lastmodified.js',
	),
	'javelin-behavior-error-log' =>
	array(
	'uri' => '/res/a5cb42a5/rsrc/js/application/core/behavior-error-log.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-dom',
	),
	'disk' => '/rsrc/js/application/core/behavior-error-log.js',
	),
	'javelin-behavior-files-drag-and-drop' =>
	array(
	'uri' => '/res/0e84cc42/rsrc/js/application/core/behavior-files-drag-and-drop.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	2 => 'javelin-uri',
	3 => 'phabricator-drag-and-drop-file-upload',
	),
	'disk' => '/rsrc/js/application/core/behavior-files-drag-and-drop.js',
	),
	'javelin-behavior-herald-rule-editor' =>
	array(
	'uri' => '/res/77a0c945/rsrc/js/application/herald/herald-rule-editor.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'herald-rule-editor',
	1 => 'javelin-behavior',
	),
	'disk' => '/rsrc/js/application/herald/herald-rule-editor.js',
	),
	'javelin-behavior-maniphest-project-create' =>
	array(
	'uri' => '/res/85a0eaf9/rsrc/js/application/maniphest/behavior-project-create.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	2 => 'javelin-stratcom',
	3 => 'javelin-workflow',
	),
	'disk' => '/rsrc/js/application/maniphest/behavior-project-create.js',
	),
	'javelin-behavior-maniphest-transaction-controls' =>
	array(
	'uri' => '/res/94a2a395/rsrc/js/application/maniphest/behavior-transaction-controls.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	2 => 'javelin-tokenizer',
	3 => 'javelin-typeahead',
	4 => 'javelin-typeahead-preloaded-source',
	),
	'disk' => '/rsrc/js/application/maniphest/behavior-transaction-controls.js',
	),
	'javelin-behavior-maniphest-transaction-expand' =>
	array(
	'uri' => '/res/966410de/rsrc/js/application/maniphest/behavior-transaction-expand.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	2 => 'javelin-workflow',
	3 => 'javelin-stratcom',
	),
	'disk' => '/rsrc/js/application/maniphest/behavior-transaction-expand.js',
	),
	'javelin-behavior-maniphest-transaction-preview' =>
	array(
	'uri' => '/res/44e86555/rsrc/js/application/maniphest/behavior-transaction-preview.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	2 => 'javelin-util',
	3 => 'phabricator-shaped-request',
	),
	'disk' => '/rsrc/js/application/maniphest/behavior-transaction-preview.js',
	),
	0 =>
	array(
	'uri' => '/res/1da00bfe/rsrc/js/javelin/lib/__tests__/URI.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-uri',
	1 => 'javelin-php-serializer',
	),
	'disk' => '/rsrc/js/javelin/lib/__tests__/URI.js',
	),
	'javelin-behavior-owners-path-editor' =>
	array(
	'uri' => '/res/9cf78ffc/rsrc/js/application/owners/owners-path-editor.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'owners-path-editor',
	1 => 'javelin-behavior',
	),
	'disk' => '/rsrc/js/application/owners/owners-path-editor.js',
	),
	'javelin-behavior-phabricator-keyboard-shortcuts' =>
	array(
	'uri' => '/res/94b009e2/rsrc/js/application/core/behavior-keyboard-shortcuts.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-workflow',
	2 => 'javelin-json',
	3 => 'phabricator-keyboard-shortcut',
	),
	'disk' => '/rsrc/js/application/core/behavior-keyboard-shortcuts.js',
	),
	'javelin-behavior-phabricator-object-selector' =>
	array(
	'uri' => '/res/34f9a11e/rsrc/js/application/core/behavior-object-selector.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	2 => 'javelin-request',
	3 => 'javelin-util',
	4 => 'javelin-stratcom',
	),
	'disk' => '/rsrc/js/application/core/behavior-object-selector.js',
	),
	'javelin-behavior-phabricator-watch-anchor' =>
	array(
	'uri' => '/res/bb6fa5b2/rsrc/js/application/core/behavior-watch-anchor.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-stratcom',
	2 => 'javelin-util',
	3 => 'javelin-dom',
	),
	'disk' => '/rsrc/js/application/core/behavior-watch-anchor.js',
	),
	'javelin-behavior-phriction-document-preview' =>
	array(
	'uri' => '/res/f1665ecd/rsrc/js/application/phriction/phriction-document-preview.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-dom',
	2 => 'javelin-util',
	3 => 'phabricator-shaped-request',
	),
	'disk' => '/rsrc/js/application/phriction/phriction-document-preview.js',
	),
	'javelin-behavior-projects-resource-editor' =>
	array(
	'uri' => '/res/a54d5616/rsrc/js/application/projects/projects-resource-editor.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'phabricator-prefab',
	2 => 'multirow-row-manager',
	3 => 'javelin-tokenizer',
	4 => 'javelin-typeahead-preloaded-source',
	5 => 'javelin-typeahead',
	6 => 'javelin-dom',
	7 => 'javelin-json',
	8 => 'javelin-util',
	),
	'disk' => '/rsrc/js/application/projects/projects-resource-editor.js',
	),
	'javelin-behavior-refresh-csrf' =>
	array(
	- 'uri' => '/res/39aa51f7/rsrc/js/application/core/behavior-refresh-csrf.js',
	+ 'uri' => '/res/a8204a73/rsrc/js/application/core/behavior-refresh-csrf.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-request',
	1 => 'javelin-behavior',
	2 => 'javelin-dom',
	),
	'disk' => '/rsrc/js/application/core/behavior-refresh-csrf.js',
	),
	'javelin-behavior-workflow' =>
	array(
	'uri' => '/res/079f49c3/rsrc/js/application/core/behavior-workflow.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-behavior',
	1 => 'javelin-stratcom',
	2 => 'javelin-workflow',
	),
	'disk' => '/rsrc/js/application/core/behavior-workflow.js',
	),
	'javelin-dom' =>
	array(
	'uri' => '/res/34e7f2b5/rsrc/js/javelin/lib/DOM.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-magical-init',
	1 => 'javelin-install',
	2 => 'javelin-util',
	3 => 'javelin-vector',
	4 => 'javelin-stratcom',
	),
	'disk' => '/rsrc/js/javelin/lib/DOM.js',
	),
	'javelin-event' =>
	array(
	'uri' => '/res/25c7c9e8/rsrc/js/javelin/core/Event.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	),
	'disk' => '/rsrc/js/javelin/core/Event.js',
	),
	'javelin-install' =>
	array(
	'uri' => '/res/b6692f42/rsrc/js/javelin/core/install.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-util',
	1 => 'javelin-magical-init',
	),
	'disk' => '/rsrc/js/javelin/core/install.js',
	),
	'javelin-json' =>
	array(
	'uri' => '/res/f23dbfbd/rsrc/js/javelin/lib/JSON.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-util',
	),
	'disk' => '/rsrc/js/javelin/lib/JSON.js',
	),
	'javelin-magical-init' =>
	array(
	'uri' => '/res/6a069362/rsrc/js/javelin/core/init.js',
	'type' => 'js',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/js/javelin/core/init.js',
	),
	'javelin-mask' =>
	array(
	'uri' => '/res/28e3bd9c/rsrc/js/javelin/lib/Mask.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-vector',
	2 => 'javelin-dom',
	),
	'disk' => '/rsrc/js/javelin/lib/Mask.js',
	),
	'javelin-request' =>
	array(
	'uri' => '/res/786bfe6f/rsrc/js/javelin/lib/Request.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-stratcom',
	2 => 'javelin-util',
	3 => 'javelin-behavior',
	4 => 'javelin-json',
	),
	'disk' => '/rsrc/js/javelin/lib/Request.js',
	),
	'javelin-stratcom' =>
	array(
	'uri' => '/res/d6cf4631/rsrc/js/javelin/core/Stratcom.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-event',
	2 => 'javelin-util',
	3 => 'javelin-magical-init',
	),
	'disk' => '/rsrc/js/javelin/core/Stratcom.js',
	),
	'javelin-tokenizer' =>
	array(
	'uri' => '/res/c2dbba74/rsrc/js/javelin/lib/control/tokenizer/Tokenizer.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-dom',
	1 => 'javelin-util',
	2 => 'javelin-stratcom',
	3 => 'javelin-install',
	),
	'disk' => '/rsrc/js/javelin/lib/control/tokenizer/Tokenizer.js',
	),
	'javelin-typeahead' =>
	array(
	'uri' => '/res/354d32f1/rsrc/js/javelin/lib/control/typeahead/Typeahead.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-dom',
	2 => 'javelin-vector',
	3 => 'javelin-util',
	),
	'disk' => '/rsrc/js/javelin/lib/control/typeahead/Typeahead.js',
	),
	'javelin-typeahead-composite-source' =>
	array(
	'uri' => '/res/9873d21c/rsrc/js/javelin/lib/control/typeahead/source/TypeaheadCompositeSource.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-typeahead-source',
	2 => 'javelin-util',
	),
	'disk' => '/rsrc/js/javelin/lib/control/typeahead/source/TypeaheadCompositeSource.js',
	),
	'javelin-typeahead-normalizer' =>
	array(
	'uri' => '/res/a5d60e3c/rsrc/js/javelin/lib/control/typeahead/normalizer/TypeaheadNormalizer.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	),
	'disk' => '/rsrc/js/javelin/lib/control/typeahead/normalizer/TypeaheadNormalizer.js',
	),
	'javelin-typeahead-ondemand-source' =>
	array(
	'uri' => '/res/b2e527e4/rsrc/js/javelin/lib/control/typeahead/source/TypeaheadOnDemandSource.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-util',
	2 => 'javelin-stratcom',
	3 => 'javelin-request',
	4 => 'javelin-typeahead-source',
	),
	'disk' => '/rsrc/js/javelin/lib/control/typeahead/source/TypeaheadOnDemandSource.js',
	),
	'javelin-typeahead-preloaded-source' =>
	array(
	'uri' => '/res/f3c1e7c7/rsrc/js/javelin/lib/control/typeahead/source/TypeaheadPreloadedSource.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-util',
	2 => 'javelin-stratcom',
	3 => 'javelin-request',
	4 => 'javelin-typeahead-source',
	),
	'disk' => '/rsrc/js/javelin/lib/control/typeahead/source/TypeaheadPreloadedSource.js',
	),
	'javelin-typeahead-source' =>
	array(
	'uri' => '/res/8a3aa262/rsrc/js/javelin/lib/control/typeahead/source/TypeaheadSource.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-util',
	2 => 'javelin-dom',
	3 => 'javelin-typeahead-normalizer',
	),
	'disk' => '/rsrc/js/javelin/lib/control/typeahead/source/TypeaheadSource.js',
	),
	'javelin-uri' =>
	array(
	'uri' => '/res/1c0ead43/rsrc/js/javelin/lib/URI.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-util',
	2 => 'javelin-stratcom',
	),
	'disk' => '/rsrc/js/javelin/lib/URI.js',
	),
	'javelin-util' =>
	array(
	'uri' => '/res/725cc90d/rsrc/js/javelin/core/util.js',
	'type' => 'js',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/js/javelin/core/util.js',
	),
	'javelin-vector' =>
	array(
	'uri' => '/res/50535cb8/rsrc/js/javelin/lib/Vector.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-event',
	),
	'disk' => '/rsrc/js/javelin/lib/Vector.js',
	),
	'javelin-workflow' =>
	array(
	'uri' => '/res/91a04640/rsrc/js/javelin/lib/Workflow.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-stratcom',
	1 => 'javelin-request',
	2 => 'javelin-dom',
	3 => 'javelin-vector',
	4 => 'javelin-install',
	5 => 'javelin-util',
	6 => 'javelin-mask',
	7 => 'javelin-uri',
	),
	'disk' => '/rsrc/js/javelin/lib/Workflow.js',
	),
	'mainphest-task-detail-css' =>
	array(
	'uri' => '/res/e2fbb468/rsrc/css/application/maniphest/task-detail.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/maniphest/task-detail.css',
	),
	'maniphest-task-summary-css' =>
	array(
	'uri' => '/res/14cb4b5d/rsrc/css/application/maniphest/task-summary.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/maniphest/task-summary.css',
	),
	'maniphest-transaction-detail-css' =>
	array(
	'uri' => '/res/149fccab/rsrc/css/application/maniphest/transaction-detail.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/maniphest/transaction-detail.css',
	),
	'multirow-row-manager' =>
	array(
	'uri' => '/res/0a9b3dee/rsrc/js/application/core/MultirowRowManager.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-stratcom',
	2 => 'javelin-dom',
	3 => 'javelin-util',
	),
	'disk' => '/rsrc/js/application/core/MultirowRowManager.js',
	),
	'owners-path-editor' =>
	array(
	'uri' => '/res/e6c51eb6/rsrc/js/application/owners/OwnersPathEditor.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'multirow-row-manager',
	1 => 'javelin-install',
	2 => 'path-typeahead',
	3 => 'javelin-dom',
	4 => 'javelin-util',
	),
	'disk' => '/rsrc/js/application/owners/OwnersPathEditor.js',
	),
	'owners-path-editor-css' =>
	array(
	'uri' => '/res/9bc5332c/rsrc/css/application/owners/owners-path-editor.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/owners/owners-path-editor.css',
	),
	'path-typeahead' =>
	array(
	'uri' => '/res/1343345d/rsrc/js/application/herald/PathTypeahead.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-typeahead',
	2 => 'javelin-dom',
	3 => 'javelin-request',
	4 => 'javelin-typeahead-ondemand-source',
	5 => 'javelin-util',
	),
	'disk' => '/rsrc/js/application/herald/PathTypeahead.js',
	),
	'phabricator-core-buttons-css' =>
	array(
	'uri' => '/res/3059cf79/rsrc/css/core/buttons.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/core/buttons.css',
	),
	'phabricator-core-css' =>
	array(
	'uri' => '/res/bd20d04b/rsrc/css/core/core.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/core/core.css',
	),
	'phabricator-countdown-css' =>
	array(
	'uri' => '/res/0f646281/rsrc/css/application/countdown/timer.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/countdown/timer.css',
	),
	'phabricator-directory-css' =>
	array(
	'uri' => '/res/a3d307c5/rsrc/css/application/directory/phabricator-directory.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/directory/phabricator-directory.css',
	),
	'phabricator-drag-and-drop-file-upload' =>
	array(
	'uri' => '/res/63a06ad9/rsrc/js/application/core/DragAndDropFileUpload.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-util',
	2 => 'javelin-request',
	3 => 'javelin-dom',
	4 => 'javelin-uri',
	),
	'disk' => '/rsrc/js/application/core/DragAndDropFileUpload.js',
	),
	'phabricator-feed-css' =>
	array(
	'uri' => '/res/32e5879b/rsrc/css/application/feed/feed.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/feed/feed.css',
	),
	'phabricator-keyboard-shortcut' =>
	array(
	'uri' => '/res/beed38cd/rsrc/js/application/core/KeyboardShortcut.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-util',
	2 => 'phabricator-keyboard-shortcut-manager',
	),
	'disk' => '/rsrc/js/application/core/KeyboardShortcut.js',
	),
	'phabricator-keyboard-shortcut-manager' =>
	array(
	'uri' => '/res/04767571/rsrc/js/application/core/KeyboardShortcutManager.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-util',
	2 => 'javelin-stratcom',
	3 => 'javelin-dom',
	4 => 'javelin-vector',
	),
	'disk' => '/rsrc/js/application/core/KeyboardShortcutManager.js',
	),
	'phabricator-object-selector-css' =>
	array(
	'uri' => '/res/608461d2/rsrc/css/application/objectselector/object-selector.css',
	'type' => 'css',
	'requires' =>
	array(
	0 => 'aphront-dialog-view-css',
	),
	'disk' => '/rsrc/css/application/objectselector/object-selector.css',
	),
	'phabricator-prefab' =>
	array(
	'uri' => '/res/5784a112/rsrc/js/application/core/Prefab.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-util',
	2 => 'javelin-dom',
	),
	'disk' => '/rsrc/js/application/core/Prefab.js',
	),
	'phabricator-profile-css' =>
	array(
	'uri' => '/res/ebe1ac2f/rsrc/css/application/profile/profile-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/profile/profile-view.css',
	),
	'phabricator-remarkup-css' =>
	array(
	'uri' => '/res/7ca89111/rsrc/css/core/remarkup.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/core/remarkup.css',
	),
	'phabricator-search-results-css' =>
	array(
	'uri' => '/res/f8a86e27/rsrc/css/application/search/search-results.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/search/search-results.css',
	),
	'phabricator-shaped-request' =>
	array(
	'uri' => '/res/d7ba774e/rsrc/js/application/core/ShapedRequest.js',
	'type' => 'js',
	'requires' =>
	array(
	0 => 'javelin-install',
	1 => 'javelin-util',
	2 => 'javelin-request',
	),
	'disk' => '/rsrc/js/application/core/ShapedRequest.js',
	),
	'phabricator-slowvote-css' =>
	array(
	'uri' => '/res/94d20443/rsrc/css/application/slowvote/slowvote.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/slowvote/slowvote.css',
	),
	'phabricator-standard-page-view' =>
	array(
	'uri' => '/res/325b5b0f/rsrc/css/application/base/standard-page-view.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/base/standard-page-view.css',
	),
	'phabricator-ui-example-css' =>
	array(
	'uri' => '/res/0cef078b/rsrc/css/application/uiexample/example.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/uiexample/example.css',
	),
	'phriction-document-css' =>
	array(
	'uri' => '/res/a0eb9ea1/rsrc/css/application/phriction/phriction-document-css.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/phriction/phriction-document-css.css',
	),
	'project-edit-css' =>
	array(
	'uri' => '/res/c192b5f9/rsrc/css/application/projects/project-edit.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/application/projects/project-edit.css',
	),
	'syntax-highlighting-css' =>
	array(
	'uri' => '/res/14bc2ee1/rsrc/css/core/syntax.css',
	'type' => 'css',
	'requires' =>
	array(
	),
	'disk' => '/rsrc/css/core/syntax.css',
	),
	), array(
	'packages' =>
	array(
	'03ef179e' =>
	array(
	'name' => 'diffusion.pkg.css',
	'symbols' =>
	array(
	0 => 'diffusion-commit-view-css',
	),
	'uri' => '/res/pkg/03ef179e/diffusion.pkg.css',
	'type' => 'css',
	),
	'1258c2b0' =>
	array(
	'name' => 'core.pkg.css',
	'symbols' =>
	array(
	0 => 'phabricator-core-css',
	1 => 'phabricator-core-buttons-css',
	2 => 'phabricator-standard-page-view',
	3 => 'aphront-dialog-view-css',
	4 => 'aphront-form-view-css',
	5 => 'aphront-panel-view-css',
	6 => 'aphront-side-nav-view-css',
	7 => 'aphront-table-view-css',
	8 => 'aphront-crumbs-view-css',
	9 => 'aphront-tokenizer-control-css',
	10 => 'aphront-typeahead-control-css',
	11 => 'aphront-list-filter-view-css',
	12 => 'phabricator-directory-css',
	13 => 'phabricator-remarkup-css',
	14 => 'syntax-highlighting-css',
	),
	'uri' => '/res/pkg/1258c2b0/core.pkg.css',
	'type' => 'css',
	),
	'25f94e94' =>
	array(
	'name' => 'typeahead.pkg.js',
	'symbols' =>
	array(
	0 => 'javelin-typeahead',
	1 => 'javelin-typeahead-normalizer',
	2 => 'javelin-typeahead-source',
	3 => 'javelin-typeahead-preloaded-source',
	4 => 'javelin-typeahead-ondemand-source',
	5 => 'javelin-tokenizer',
	6 => 'javelin-behavior-aphront-basic-tokenizer',
	),
	'uri' => '/res/pkg/25f94e94/typeahead.pkg.js',
	'type' => 'js',
	),
	'307df223' =>
	array(
	'name' => 'javelin.pkg.js',
	'symbols' =>
	array(
	0 => 'javelin-util',
	1 => 'javelin-install',
	2 => 'javelin-event',
	3 => 'javelin-stratcom',
	4 => 'javelin-behavior',
	5 => 'javelin-request',
	6 => 'javelin-vector',
	7 => 'javelin-dom',
	8 => 'javelin-json',
	9 => 'javelin-uri',
	),
	'uri' => '/res/pkg/307df223/javelin.pkg.js',
	'type' => 'js',
	),
	'3f2092d7' =>
	array(
	'name' => 'differential.pkg.css',
	'symbols' =>
	array(
	0 => 'differential-core-view-css',
	1 => 'differential-changeset-view-css',
	2 => 'differential-revision-detail-css',
	3 => 'differential-revision-history-css',
	4 => 'differential-table-of-contents-css',
	5 => 'differential-revision-comment-css',
	6 => 'differential-revision-add-comment-css',
	7 => 'differential-revision-comment-list-css',
	),
	'uri' => '/res/pkg/3f2092d7/differential.pkg.css',
	'type' => 'css',
	),
	'd0713563' =>
	array(
	'name' => 'workflow.pkg.js',
	'symbols' =>
	array(
	0 => 'javelin-mask',
	1 => 'javelin-workflow',
	2 => 'javelin-behavior-workflow',
	3 => 'javelin-behavior-aphront-form-disable-on-submit',
	4 => 'phabricator-keyboard-shortcut-manager',
	5 => 'phabricator-keyboard-shortcut',
	6 => 'javelin-behavior-phabricator-keyboard-shortcuts',
	),
	'uri' => '/res/pkg/d0713563/workflow.pkg.js',
	'type' => 'js',
	),
	'dba261c2' =>
	array(
	'name' => 'differential.pkg.js',
	'symbols' =>
	array(
	0 => 'javelin-behavior-differential-feedback-preview',
	1 => 'javelin-behavior-differential-edit-inline-comments',
	2 => 'javelin-behavior-differential-populate',
	3 => 'javelin-behavior-differential-show-more',
	4 => 'javelin-behavior-differential-diff-radios',
	),
	'uri' => '/res/pkg/dba261c2/differential.pkg.js',
	'type' => 'js',
	),
	),
	'reverse' =>
	array(
	'aphront-crumbs-view-css' => '1258c2b0',
	'aphront-dialog-view-css' => '1258c2b0',
	'aphront-form-view-css' => '1258c2b0',
	'aphront-list-filter-view-css' => '1258c2b0',
	'aphront-panel-view-css' => '1258c2b0',
	'aphront-side-nav-view-css' => '1258c2b0',
	'aphront-table-view-css' => '1258c2b0',
	'aphront-tokenizer-control-css' => '1258c2b0',
	'aphront-typeahead-control-css' => '1258c2b0',
	'differential-changeset-view-css' => '3f2092d7',
	'differential-core-view-css' => '3f2092d7',
	'differential-revision-add-comment-css' => '3f2092d7',
	'differential-revision-comment-css' => '3f2092d7',
	'differential-revision-comment-list-css' => '3f2092d7',
	'differential-revision-detail-css' => '3f2092d7',
	'differential-revision-history-css' => '3f2092d7',
	'differential-table-of-contents-css' => '3f2092d7',
	'diffusion-commit-view-css' => '03ef179e',
	'javelin-behavior' => '307df223',
	'javelin-behavior-aphront-basic-tokenizer' => '25f94e94',
	'javelin-behavior-aphront-form-disable-on-submit' => 'd0713563',
	'javelin-behavior-differential-diff-radios' => 'dba261c2',
	'javelin-behavior-differential-edit-inline-comments' => 'dba261c2',
	'javelin-behavior-differential-feedback-preview' => 'dba261c2',
	'javelin-behavior-differential-populate' => 'dba261c2',
	'javelin-behavior-differential-show-more' => 'dba261c2',
	'javelin-behavior-phabricator-keyboard-shortcuts' => 'd0713563',
	'javelin-behavior-workflow' => 'd0713563',
	'javelin-dom' => '307df223',
	'javelin-event' => '307df223',
	'javelin-install' => '307df223',
	'javelin-json' => '307df223',
	'javelin-mask' => 'd0713563',
	'javelin-request' => '307df223',
	'javelin-stratcom' => '307df223',
	'javelin-tokenizer' => '25f94e94',
	'javelin-typeahead' => '25f94e94',
	'javelin-typeahead-normalizer' => '25f94e94',
	'javelin-typeahead-ondemand-source' => '25f94e94',
	'javelin-typeahead-preloaded-source' => '25f94e94',
	'javelin-typeahead-source' => '25f94e94',
	'javelin-uri' => '307df223',
	'javelin-util' => '307df223',
	'javelin-vector' => '307df223',
	'javelin-workflow' => 'd0713563',
	'phabricator-core-buttons-css' => '1258c2b0',
	'phabricator-core-css' => '1258c2b0',
	'phabricator-directory-css' => '1258c2b0',
	'phabricator-keyboard-shortcut' => 'd0713563',
	'phabricator-keyboard-shortcut-manager' => 'd0713563',
	'phabricator-remarkup-css' => '1258c2b0',
	'phabricator-standard-page-view' => '1258c2b0',
	'syntax-highlighting-css' => '1258c2b0',
	),
	));
	diff --git a/src/aphront/request/AphrontRequest.php b/src/aphront/request/AphrontRequest.php
	index 363633fd74..30a23b238a 100644
	--- a/src/aphront/request/AphrontRequest.php
	+++ b/src/aphront/request/AphrontRequest.php
	@@ -1,187 +1,216 @@
	<?php

	/*
	* Copyright 2011 Facebook, Inc.
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/


	/**
	* @group aphront
	*/
	class AphrontRequest {

	const TYPE_AJAX = '__ajax__';
	const TYPE_FORM = '__form__';

	private $host;
	private $path;
	private $requestData;
	private $user;
	private $env;
	private $applicationConfiguration;

	final public function __construct($host, $path) {
	$this->host = $host;
	$this->path = $path;
	}

	final public function setApplicationConfiguration(
	$application_configuration) {
	$this->applicationConfiguration = $application_configuration;
	return $this;
	}

	final public function getApplicationConfiguration() {
	return $this->applicationConfiguration;
	}

	final public function setRequestData(array $request_data) {
	$this->requestData = $request_data;
	return $this;
	}

	final public function getPath() {
	return $this->path;
	}

	final public function getHost() {
	return $this->host;
	}

	final public function getInt($name, $default = null) {
	if (isset($this->requestData[$name])) {
	return (int)$this->requestData[$name];
	} else {
	return $default;
	}
	}

	final public function getBool($name, $default = null) {
	if (isset($this->requestData[$name])) {
	if ($this->requestData[$name] === 'true') {
	return true;
	} else if ($this->requestData[$name] === 'false') {
	return false;
	} else {
	return (bool)$this->requestData[$name];
	}
	} else {
	return $default;
	}
	}

	final public function getStr($name, $default = null) {
	if (isset($this->requestData[$name])) {
	$str = (string)$this->requestData[$name];
	// Normalize newline craziness.
	$str = str_replace(
	array("\r\n", "\r"),
	array("\n", "\n"),
	$str);
	return $str;
	} else {
	return $default;
	}
	}

	final public function getArr($name, $default = array()) {
	if (isset($this->requestData[$name]) &&
	is_array($this->requestData[$name])) {
	return $this->requestData[$name];
	} else {
	return $default;
	}
	}

	final public function getExists($name) {
	return array_key_exists($name, $this->requestData);
	}

	final public function isHTTPPost() {
	return ($_SERVER['REQUEST_METHOD'] == 'POST');
	}

	final public function isAjax() {
	return $this->getExists(self::TYPE_AJAX);
	}

	- final public function isFormPost() {
	- $post = $this->getExists(self::TYPE_FORM) &&
	- $this->isHTTPPost();
	+ public static function getCSRFTokenName() {
	+ return '__csrf__';
	+ }

	- if (!$post) {
	- return false;
	+ public static function getCSRFHeaderName() {
	+ return 'X-Phabricator-Csrf';
	+ }
	+
	+ final public function validateCSRF() {
	+ $token_name = self::getCSRFTokenName();
	+ $token = $this->getStr($token_name);
	+
	+ // No token in the request, check the HTTP header which is added for Ajax
	+ // requests.
	+ if (empty($token)) {
	+
	+ // PHP mangles HTTP headers by uppercasing them and replacing hyphens with
	+ // underscores, then prepending 'HTTP_'.
	+ $php_index = self::getCSRFHeaderName();
	+ $php_index = strtoupper($php_index);
	+ $php_index = str_replace('-', '_', $php_index);
	+ $php_index = 'HTTP_'.$php_index;
	+
	+ $token = idx($_SERVER, $php_index);
	}

	- $valid = $this->getUser()->validateCSRFToken($this->getStr('__csrf__'));
	+ $valid = $this->getUser()->validateCSRFToken($token);
	if (!$valid) {
	// This should only be able to happen if you load a form, pull your
	// internet for 6 hours, and then reconnect and immediately submit,
	// but give the user some indication of what happened since the workflow
	// is incredibly confusing otherwise.
	throw new AphrontCSRFException(
	"The form you just submitted did not include a valid CSRF token. ".
	"This token is a technical security measure which prevents a ".
	"certain type of login hijacking attack. However, the token can ".
	"become invalid if you leave a page open for more than six hours ".
	"without a connection to the internet. To fix this problem: reload ".
	"the page, and then resubmit it.");
	}

	return true;
	}

	+ final public function isFormPost() {
	+ $post = $this->getExists(self::TYPE_FORM) &&
	+ $this->isHTTPPost();
	+
	+ if (!$post) {
	+ return false;
	+ }
	+
	+ return $this->validateCSRF();
	+ }
	+
	final public function getCookie($name, $default = null) {
	return idx($_COOKIE, $name, $default);
	}

	final public function clearCookie($name) {
	$this->setCookie($name, '', time() - (60 * 60 * 24 * 30));
	}

	final public function setCookie($name, $value, $expire = null) {
	if ($expire === null) {
	$expire = time() + (60 * 60 * 24 * 365 * 5);
	}
	setcookie(
	$name,
	$value,
	$expire,
	$path = '/',
	$domain = '',
	$secure = false,
	$http_only = true);
	}

	final public function setUser($user) {
	$this->user = $user;
	return $this;
	}

	final public function getUser() {
	return $this->user;
	}

	final public function getRequestURI() {
	$get = $_GET;
	unset($get['__path__']);
	return id(new PhutilURI($this->getPath()))->setQueryParams($get);
	}

	final public function isDialogFormPost() {
	return $this->isFormPost() && $this->getStr('__dialog__');
	}

	}
	diff --git a/src/applications/files/controller/dropupload/PhabricatorFileDropUploadController.php b/src/applications/files/controller/dropupload/PhabricatorFileDropUploadController.php
	index 820482f39e..4e8d48f2cf 100644
	--- a/src/applications/files/controller/dropupload/PhabricatorFileDropUploadController.php
	+++ b/src/applications/files/controller/dropupload/PhabricatorFileDropUploadController.php
	@@ -1,47 +1,50 @@
	<?php

	/*
	* Copyright 2011 Facebook, Inc.
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	class PhabricatorFileDropUploadController extends PhabricatorFileController {

	public function processRequest() {
	$request = $this->getRequest();
	$user = $request->getUser();

	+ // NOTE: Throws if valid CSRF token is not present in the request.
	+ $request->validateCSRF();
	+
	$data = file_get_contents('php://input');
	$name = $request->getStr('name');

	$file = PhabricatorFile::newFromFileData(
	$data,
	array(
	'name' => $request->getStr('name'),
	'authorPHID' => $user->getPHID(),
	));

	$view = new AphrontAttachedFileView();
	$view->setFile($file);

	return id(new AphrontAjaxResponse())->setContent(
	array(
	'id' => $file->getID(),
	'phid' => $file->getPHID(),
	'html' => $view->render(),
	'uri' => $file->getBestURI(),
	));
	}

	}
	diff --git a/src/infrastructure/javelin/markup/__init__.php b/src/infrastructure/javelin/markup/__init__.php
	index 790f5404cc..eee8eff821 100644
	--- a/src/infrastructure/javelin/markup/__init__.php
	+++ b/src/infrastructure/javelin/markup/__init__.php
	@@ -1,14 +1,15 @@
	<?php
	/**
	* This file is automatically generated. Lint this module to rebuild it.
	* @generated
	*/



	+phutil_require_module('phabricator', 'aphront/request');
	phutil_require_module('phabricator', 'infrastructure/celerity/api');

	phutil_require_module('phutil', 'markup');


	phutil_require_source('markup.php');
	diff --git a/src/infrastructure/javelin/markup/markup.php b/src/infrastructure/javelin/markup/markup.php
	index 15c1db7b9a..f6feb76595 100644
	--- a/src/infrastructure/javelin/markup/markup.php
	+++ b/src/infrastructure/javelin/markup/markup.php
	@@ -1,70 +1,70 @@
	<?php

	/*
	* Copyright 2011 Facebook, Inc.
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	function javelin_render_tag(
	$tag,
	array $attributes = array(),
	$content = null) {

	if (isset($attributes['sigil']) \|\|
	isset($attributes['meta']) \|\|
	isset($attributes['mustcapture'])) {
	foreach ($attributes as $k => $v) {
	switch ($k) {
	case 'sigil':
	$attributes['data-sigil'] = $v;
	unset($attributes[$k]);
	break;
	case 'meta':
	$response = CelerityAPI::getStaticResourceResponse();
	$id = $response->addMetadata($v);
	$attributes['data-meta'] = $id;
	unset($attributes[$k]);
	break;
	case 'mustcapture':
	$attributes['data-mustcapture'] = '1';
	unset($attributes[$k]);
	break;
	}
	}
	}

	return phutil_render_tag($tag, $attributes, $content);
	}


	function phabricator_render_form(PhabricatorUser $user, $attributes, $content) {
	return javelin_render_tag(
	'form',
	$attributes,
	phutil_render_tag(
	'input',
	array(
	'type' => 'hidden',
	- 'name' => '__csrf__',
	+ 'name' => AphrontRequest::getCSRFTokenName(),
	'value' => $user->getCSRFToken(),
	)).
	phutil_render_tag(
	'input',
	array(
	'type' => 'hidden',
	'name' => '__form__',
	'value' => true,
	)).$content);
	}

	diff --git a/src/view/form/base/AphrontFormView.php b/src/view/form/base/AphrontFormView.php
	index 9adb7f4d27..cfef0f1f64 100644
	--- a/src/view/form/base/AphrontFormView.php
	+++ b/src/view/form/base/AphrontFormView.php
	@@ -1,113 +1,113 @@
	<?php

	/*
	* Copyright 2011 Facebook, Inc.
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	final class AphrontFormView extends AphrontView {

	private $action;
	private $method = 'POST';
	private $header;
	private $data = array();
	private $encType;
	private $user;
	private $workflow;
	private $id;

	public function setID($id) {
	$this->id = $id;
	return $this;
	}

	public function setUser(PhabricatorUser $user) {
	$this->user = $user;
	return $this;
	}

	public function setAction($action) {
	$this->action = $action;
	return $this;
	}

	public function setMethod($method) {
	$this->method = $method;
	return $this;
	}

	public function setEncType($enc_type) {
	$this->encType = $enc_type;
	return $this;
	}

	public function addHiddenInput($key, $value) {
	$this->data[$key] = $value;
	return $this;
	}

	public function setWorkflow($workflow) {
	$this->workflow = $workflow;
	return $this;
	}

	public function render() {
	require_celerity_resource('aphront-form-view-css');

	Javelin::initBehavior('aphront-form-disable-on-submit');

	$layout = id(new AphrontFormLayoutView())
	->setBackgroundShading(true)
	->setPadded(true)
	->appendChild($this->renderDataInputs())
	->appendChild($this->renderChildren());

	return javelin_render_tag(
	'form',
	array(
	'action' => $this->action,
	'method' => $this->method,
	'enctype' => $this->encType,
	'sigil' => $this->workflow ? 'workflow' : null,
	'id' => $this->id,
	),
	$layout->render());
	}

	private function renderDataInputs() {
	if (!$this->user) {
	throw new Exception('You must pass the user to AphrontFormView.');
	}

	$data = $this->data + array(
	'__form__' => 1,
	- '__csrf__' => $this->user->getCSRFToken(),
	+ AphrontRequest::getCSRFTokenName() => $this->user->getCSRFToken(),
	);
	$inputs = array();
	foreach ($data as $key => $value) {
	if ($value === null) {
	continue;
	}
	$inputs[] = phutil_render_tag(
	'input',
	array(
	'type' => 'hidden',
	'name' => $key,
	'value' => $value,
	));
	}
	return implode("\n", $inputs);
	}

	}
	diff --git a/src/view/form/base/__init__.php b/src/view/form/base/__init__.php
	index 2b61fad475..ff4720b1d4 100644
	--- a/src/view/form/base/__init__.php
	+++ b/src/view/form/base/__init__.php
	@@ -1,19 +1,20 @@
	<?php
	/**
	* This file is automatically generated. Lint this module to rebuild it.
	* @generated
	*/



	+phutil_require_module('phabricator', 'aphront/request');
	phutil_require_module('phabricator', 'infrastructure/celerity/api');
	phutil_require_module('phabricator', 'infrastructure/javelin/api');
	phutil_require_module('phabricator', 'infrastructure/javelin/markup');
	phutil_require_module('phabricator', 'view/base');
	phutil_require_module('phabricator', 'view/form/layout');

	phutil_require_module('phutil', 'markup');
	phutil_require_module('phutil', 'utils');


	phutil_require_source('AphrontFormView.php');
	diff --git a/src/view/page/standard/PhabricatorStandardPageView.php b/src/view/page/standard/PhabricatorStandardPageView.php
	index 78a80561d2..9ac48deaba 100644
	--- a/src/view/page/standard/PhabricatorStandardPageView.php
	+++ b/src/view/page/standard/PhabricatorStandardPageView.php
	@@ -1,373 +1,388 @@
	<?php

	/*
	* Copyright 2011 Facebook, Inc.
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	class PhabricatorStandardPageView extends AphrontPageView {

	private $baseURI;
	private $applicationName;
	private $tabs = array();
	private $selectedTab;
	private $glyph;
	private $bodyContent;
	private $request;
	private $isAdminInterface;
	private $showChrome = true;
	private $isFrameable = false;
	private $disableConsole;

	public function setIsAdminInterface($is_admin_interface) {
	$this->isAdminInterface = $is_admin_interface;
	return $this;
	}

	public function getIsAdminInterface() {
	return $this->isAdminInterface;
	}

	public function setRequest($request) {
	$this->request = $request;
	return $this;
	}

	public function getRequest() {
	return $this->request;
	}

	public function setApplicationName($application_name) {
	$this->applicationName = $application_name;
	return $this;
	}

	public function setFrameable($frameable) {
	$this->isFrameable = $frameable;
	return $this;
	}

	public function setDisableConsole($disable) {
	$this->disableConsole = $disable;
	return $this;
	}

	public function getApplicationName() {
	return $this->applicationName;
	}

	public function setBaseURI($base_uri) {
	$this->baseURI = $base_uri;
	return $this;
	}

	public function getBaseURI() {
	return $this->baseURI;
	}

	public function setTabs(array $tabs, $selected_tab) {
	$this->tabs = $tabs;
	$this->selectedTab = $selected_tab;
	return $this;
	}

	public function setShowChrome($show_chrome) {
	$this->showChrome = $show_chrome;
	return $this;
	}

	public function getShowChrome() {
	return $this->showChrome;
	}

	public function getTitle() {
	$use_glyph = true;
	$request = $this->getRequest();
	if ($request) {
	$user = $request->getUser();
	if ($user && $user->loadPreferences()->getPreference(
	PhabricatorUserPreferences::PREFERENCE_TITLES) !== 'glyph') {
	$use_glyph = false;
	}
	}

	return ($use_glyph ?
	$this->getGlyph() : '['.$this->getApplicationName().']').
	' '.parent::getTitle();
	}


	protected function willRenderPage() {

	if (!$this->getRequest()) {
	throw new Exception(
	"You must set the Request to render a PhabricatorStandardPageView.");
	}

	$console = $this->getConsole();

	require_celerity_resource('phabricator-core-css');
	require_celerity_resource('phabricator-core-buttons-css');
	require_celerity_resource('phabricator-standard-page-view');

	+ $current_token = null;
	+ $request = $this->getRequest();
	+ if ($request) {
	+ $user = $request->getUser();
	+ if ($user) {
	+ $current_token = $user->getCSRFToken();
	+ }
	+ }
	+
	Javelin::initBehavior('workflow', array());
	- Javelin::initBehavior('refresh-csrf', array());
	+ Javelin::initBehavior(
	+ 'refresh-csrf',
	+ array(
	+ 'tokenName' => AphrontRequest::getCSRFTokenName(),
	+ 'header' => AphrontRequest::getCSRFHeaderName(),
	+ 'current' => $current_token,
	+ ));
	Javelin::initBehavior(
	'phabricator-keyboard-shortcuts',
	array(
	'helpURI' => '/help/keyboardshortcut/',
	));

	if ($console) {
	require_celerity_resource('aphront-dark-console-css');
	Javelin::initBehavior(
	'dark-console',
	array(
	'uri' => '/~/',
	));

	// Change this to initBehavior when there is some behavior to initialize
	require_celerity_resource('javelin-behavior-error-log');
	}

	$this->bodyContent = $this->renderChildren();
	}


	protected function getHead() {

	$framebust = null;
	if (!$this->isFrameable) {
	$framebust = '(top != self) && top.location.replace(self.location.href);';
	}

	$response = CelerityAPI::getStaticResourceResponse();
	$head =
	'<script type="text/javascript">'.
	$framebust.
	'window.__DEV__=1;'.
	'</script>'.
	$response->renderResourcesOfType('css').
	$response->renderSingleResource('javelin-magical-init');

	$request = $this->getRequest();
	if ($request) {
	$user = $request->getUser();
	if ($user) {
	$monospaced = $user->loadPreferences()->getPreference(
	PhabricatorUserPreferences::PREFERENCE_MONOSPACED
	);

	if (strlen($monospaced)) {
	$head .=
	'<style type="text/css">'.
	'.PhabricatorMonospaced { font: '.
	$monospaced.
	' !important; }'.
	'</style>';
	}
	}
	}

	return $head;
	}

	public function setGlyph($glyph) {
	$this->glyph = $glyph;
	return $this;
	}

	public function getGlyph() {
	return $this->glyph;
	}

	protected function willSendResponse($response) {
	$console = $this->getRequest()->getApplicationConfiguration()->getConsole();
	if ($console) {
	$response = str_replace(
	'<darkconsole />',
	$console->render($this->getRequest()),
	$response);
	}
	return $response;
	}

	protected function getBody() {
	$console = $this->getConsole();

	$tabs = array();
	foreach ($this->tabs as $name => $tab) {
	$tab_markup = phutil_render_tag(
	'a',
	array(
	'href' => idx($tab, 'href'),
	),
	phutil_escape_html(idx($tab, 'name')));
	$tab_markup = phutil_render_tag(
	'td',
	array(
	'class' => ($name == $this->selectedTab)
	? 'phabricator-selected-tab'
	: null,
	),
	$tab_markup);
	$tabs[] = $tab_markup;
	}
	$tabs = implode('', $tabs);

	$login_stuff = null;
	$request = $this->getRequest();
	$user = null;
	if ($request) {
	$user = $request->getUser();
	// NOTE: user may not be set here if we caught an exception early
	// in the execution workflow.
	if ($user && $user->getPHID()) {
	$login_stuff =
	phutil_render_tag(
	'a',
	array(
	'href' => '/p/'.$user->getUsername().'/',
	),
	phutil_escape_html($user->getUsername())).
	' · '.
	'<a href="/settings/">Settings</a>'.
	' · '.
	phabricator_render_form(
	$user,
	array(
	'action' => '/search/',
	'method' => 'post',
	'style' => 'display: inline',
	),
	'<input type="text" name="query" />'.
	'<button>Search</button>');
	}
	}

	$foot_links = array();

	$version = PhabricatorEnv::getEnvConfig('phabricator.version');
	$foot_links[] = phutil_escape_html('Phabricator '.$version);

	if (PhabricatorEnv::getEnvConfig('darkconsole.enabled') &&
	!PhabricatorEnv::getEnvConfig('darkconsole.always-on')) {
	if ($console) {
	$link = javelin_render_tag(
	'a',
	array(
	'href' => '/~/',
	'sigil' => 'workflow',
	),
	'Disable DarkConsole');
	} else {
	$link = javelin_render_tag(
	'a',
	array(
	'href' => '/~/',
	'sigil' => 'workflow',
	),
	'Enable DarkConsole');
	}
	$foot_links[] = $link;
	}

	if ($user && $user->getPHID()) {
	// This ends up very early in tab order at the top of the page and there's
	// a bunch of junk up there anyway, just shove it down here.
	$foot_links[] = phabricator_render_form(
	$user,
	array(
	'action' => '/logout/',
	'method' => 'post',
	'style' => 'display: inline',
	),
	'<button class="link">Logout</button>');
	}

	$foot_links = implode(' · ', $foot_links);

	$admin_class = null;
	if ($this->getIsAdminInterface()) {
	$admin_class = 'phabricator-admin-page-view';
	}

	$header_chrome = null;
	$footer_chrome = null;
	if ($this->getShowChrome()) {
	$header_chrome =
	'<table class="phabricator-standard-header">'.
	'<tr>'.
	'<td class="phabricator-logo"><a href="/"> </a></td>'.
	'<td>'.
	'<table class="phabricator-primary-navigation">'.
	'<tr>'.
	'<th>'.
	phutil_render_tag(
	'a',
	array(
	'href' => $this->getBaseURI(),
	'class' => 'phabricator-head-appname',
	),
	phutil_escape_html($this->getApplicationName())).
	'</th>'.
	$tabs.
	'</tr>'.
	'</table>'.
	'</td>'.
	'<td class="phabricator-login-details">'.
	$login_stuff.
	'</td>'.
	'</tr>'.
	'</table>';
	$footer_chrome =
	'<div class="phabricator-page-foot">'.
	$foot_links.
	'</div>';
	}

	return
	($console ? '<darkconsole />' : null).
	'<div class="phabricator-standard-page '.$admin_class.'">'.
	$header_chrome.
	$this->bodyContent.
	'<div style="clear: both;"></div>'.
	'</div>'.
	$footer_chrome;
	}

	protected function getTail() {
	$response = CelerityAPI::getStaticResourceResponse();
	return
	$response->renderResourcesOfType('js').
	$response->renderHTMLFooter();
	}

	protected function getBodyClasses() {
	$classes = array();

	if (!$this->getShowChrome()) {
	$classes[] = 'phabricator-chromeless-page';
	}

	return implode(' ', $classes);
	}

	private function getConsole() {
	if ($this->disableConsole) {
	return null;
	}
	return $this->getRequest()->getApplicationConfiguration()->getConsole();
	}
	}
	diff --git a/src/view/page/standard/__init__.php b/src/view/page/standard/__init__.php
	index 7db98f4535..6acc29d440 100644
	--- a/src/view/page/standard/__init__.php
	+++ b/src/view/page/standard/__init__.php
	@@ -1,20 +1,21 @@
	<?php
	/**
	* This file is automatically generated. Lint this module to rebuild it.
	* @generated
	*/



	+phutil_require_module('phabricator', 'aphront/request');
	phutil_require_module('phabricator', 'applications/people/storage/preferences');
	phutil_require_module('phabricator', 'infrastructure/celerity/api');
	phutil_require_module('phabricator', 'infrastructure/env');
	phutil_require_module('phabricator', 'infrastructure/javelin/api');
	phutil_require_module('phabricator', 'infrastructure/javelin/markup');
	phutil_require_module('phabricator', 'view/page/base');

	phutil_require_module('phutil', 'markup');
	phutil_require_module('phutil', 'utils');


	phutil_require_source('PhabricatorStandardPageView.php');
	diff --git a/webroot/rsrc/js/application/core/behavior-refresh-csrf.js b/webroot/rsrc/js/application/core/behavior-refresh-csrf.js
	index 74d568c54e..06baa873ba 100644
	--- a/webroot/rsrc/js/application/core/behavior-refresh-csrf.js
	+++ b/webroot/rsrc/js/application/core/behavior-refresh-csrf.js
	@@ -1,44 +1,52 @@
	/**
	* @provides javelin-behavior-refresh-csrf
	* @requires javelin-request
	* javelin-behavior
	* javelin-dom
	*/

	/**
	* We cycle CSRF tokens every hour but accept the last 6, which means that if
	* you leave a page open for more than 6 hours before submitting it you may hit
	* CSRF protection. This is a super confusing workflow which potentially
	* discards data, and we can't recover from it by re-issuing a CSRF token
	* since that would leave us vulnerable to CSRF attacks.
	*
	* Our options basically boil down to:
	*
	* - Increase the CSRF window to something like 24 hours. This makes the CSRF
	* implementation vaguely less secure and only mitigates the problem.
	* - Code all forms to understand GET, POST and POST-with-invalid-CSRF. This
	* is a huge undertaking and difficult to test properly since it is hard
	* to remember to test the third phantom state.
	* - Use JS to refresh the CSRF token.
	*
	* Since (1) mitigates rather than solving and (2) is a huge mess, this
	* behavior implements (3) and refreshes all the CSRF tokens on the page every
	* 55 minutes. This allows forms to remain valid indefinitely.
	*/
	JX.behavior('refresh-csrf', function(config) {

	+ var current_token = config.current;
	+
	function refresh_csrf() {
	new JX.Request('/login/refresh/', function(r) {
	- var inputs = JX.DOM.scry(document.body, 'input');
	- for (var ii = 0; ii < inputs.length; ii++) {
	- if (inputs[ii].name == '__csrf__') {
	- inputs[ii].value = r.token;
	- }
	+ current_token = r.token;
	+ var inputs = JX.DOM.scry(document.body, 'input');
	+ for (var ii = 0; ii < inputs.length; ii++) {
	+ if (inputs[ii].name == config.tokenName) {
	+ inputs[ii].value = r.token;
	}
	- })
	- .send();
	+ }
	+ })
	+ .send();
	}

	// Refresh the CSRF tokens every 55 minutes.
	setInterval(refresh_csrf, 1000 * 60 * 55);
	+
	+ // Additionally, add the CSRF token as an HTTP header to every AJAX request.
	+ JX.Request.listen('open', function(r) {
	+ r.getTransport().setRequestHeader(config.header, current_token);
	+ });
	});

File Metadata

Mime Type: text/x-diff
Expires: Wed, Dec 3, 1:29 AM (4 h, 33 m)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 433030
Default Alt Text: (71 KB)

No OneTemporaryActions

View Options

File Metadata

Event Timeline

No OneTemporary
Actions