]> git.koha-community.org Git - koha.git/commit
Bug 29931: [21.05.x] Check cookie status before continuing
authorMarcel de Rooy <m.de.rooy@rijksmuseum.nl>
Mon, 24 Jan 2022 10:24:08 +0000 (10:24 +0000)
committerWainui Witika-Park <wainuiwitikapark@catalyst.net.nz>
Wed, 9 Mar 2022 01:42:38 +0000 (01:42 +0000)
commitab2774aaabb47250c946df984bf56dc7d90b5a08
tree080cab2017974ff972a6776a94684934496186dc
parent54f287f0186e4111e7f58be62487abfad1533ac9
Bug 29931: [21.05.x] Check cookie status before continuing

Test plan:
Logout from staff.
Try to run plugins-enable (you should have some active plugin).
Like: https://yourserver:staffport/cgi-bin/koha/plugins/plugins-enable.pl?class=Koha::Plugin::Test&method=enable
Replace class and method as appropriate.
Verify that with this patch, you will be redirected to 401 page.

Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl>
Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org>
Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org>
Bug 29931: (follow-up) Similar thing in opac-patron-image.pl

Although less harmful indeed. No borrowernumber, no image.

Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl>
Tested: logged in, logged out, prefs toggled. All fine.

Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org>
Bug 29931: (follow-up) Fix svc/checkouts and return_claims too

Adding the same auth_status check here too.

Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl>
Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org>
Signed-off-by: Wainui Witika-Park <wainuiwitikapark@catalyst.net.nz>
opac/opac-patron-image.pl
plugins/plugins-enable.pl
svc/checkouts
svc/return_claims