Magento CSRF Protection
Maybe if I write this down I’ll remember it. You probably know all Magento admin console URLs need a nonce/key in the URL http://magento.example.com/admin/catalog_product/edit/id/174/key/c4df66cd2118cb5422c9fb5eff7eq4f0/ That’s why we use the Mage::getModel('adminhtml/url') model object to generate URLs. What I always forget [...]
astorm