From 2e5f250ba867d29edde2ad6622b67e7ccd5fea6e Mon Sep 17 00:00:00 2001
From: Berkeley Martinez <Berkeley@robotie.com>
Date: Tue, 9 Jun 2015 11:55:51 -0700
Subject: [PATCH] remove hpp loopback is protected against hpp attack by
 default

---
 package.json     | 1 -
 server/server.js | 2 --
 2 files changed, 3 deletions(-)

diff --git a/package.json b/package.json
index 646b25a1321..a6ce0613e07 100644
--- a/package.json
+++ b/package.json
@@ -53,7 +53,6 @@
     "gulp-minify-css": "~0.5.1",
     "helmet": "~0.9.0",
     "helmet-csp": "^0.2.3",
-    "hpp": "^0.2.0",
     "jade": "~1.8.0",
     "less": "~1.7.5",
     "less-middleware": "~2.0.1",
diff --git a/server/server.js b/server/server.js
index 5529bec38fd..714e5940cc0 100755
--- a/server/server.js
+++ b/server/server.js
@@ -27,7 +27,6 @@ var R = require('ramda'),
     expressValidator = require('express-validator'),
     forceDomain = require('forcedomain'),
     lessMiddleware = require('less-middleware'),
-    hpp = require('hpp'),
 
     passportProviders = require('./passport-providers'),
     /**
@@ -60,7 +59,6 @@ app.use(lessMiddleware(path.join(__dirname, '/public')));
 app.use(logger('dev'));
 app.use(bodyParser.json());
 app.use(bodyParser.urlencoded({ extended: true }));
-app.use(hpp());
 app.use(expressValidator({
   customValidators: {
     matchRegex: function (param, regex) {