fix: add _csrf token to delete-video AJAX in write_offs_erp form

POST request to write-offs-erp/delete-video was missing _csrf token,
causing 400 BadRequestHttpException on every video removal.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>

diff --git a/erp24/views/write_offs_erp/_form.php b/erp24/views/write_offs_erp/_form.php
index 26c65037aa4a85b3af6975d9cbaca1368571ece3..ed152eb066486526de87e920c8b98334fc872159 100644 (file)
--- a/erp24/views/write_offs_erp/_form.php
+++ b/erp24/views/write_offs_erp/_form.php
@@ -364,6 +364,7 @@ $this->registerJsFile('/js/heic_to_jpg_replace.js', ['position' => \yii\web\View
                                             url: deleteUrl,
                                             type: 'POST',
                                             dataType: 'json',
+                                            data: { _csrf: yii.getCsrfToken() },
                                             success: function(response) {
                                                 if (!response.success) {
                                                     alert('Ошибка удаления видео');