git.koha-community.org Git - koha.git/commit

author	Marcel de Rooy <m.de.rooy@rijksmuseum.nl>
	Mon, 24 Jan 2022 10:24:08 +0000 (10:24 +0000)
committer	Victor Grousset/tuxayo <victor@tuxayo.net>
	Tue, 8 Mar 2022 21:50:38 +0000 (22:50 +0100)
commit	c2e512e4fcb9491330d5d50d67fe6b8e54a68eaa
tree	c2ea551d8f41f776bb6c1f38c509cdb7918e475f	tree \| snapshot
parent	42a17ea13f439f4e399b939a229791685c22f9d8	commit \| diff

Bug 29931: Check cookie status before continuing

Test plan:
Logout from staff.
Try to run plugins-enable (you should have some active plugin).
Like: https://yourserver:staffport/cgi-bin/koha/plugins/plugins-enable.pl?class=Koha::Plugin::Test&method=enable
Replace class and method as appropriate.
Verify that with this patch, you will be redirected to 401 page.

Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl>
Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org>
Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org>
Bug 29931: (follow-up) Similar thing in opac-patron-image.pl

Although less harmful indeed. No borrowernumber, no image.

Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl>
Tested: logged in, logged out, prefs toggled. All fine.

Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org>
Bug 29931: (follow-up) Fix svc/checkouts and return_claims too

Adding the same auth_status check here too.

Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl>
Signed-off-by: Jonathan Druart <jonathan.druart@bugs.koha-community.org>
Signed-off-by: Victor Grousset/tuxayo <victor@tuxayo.net>

opac/opac-patron-image.pl		diff \| blob \| history
plugins/plugins-enable.pl		diff \| blob \| history
svc/checkouts		diff \| blob \| history
svc/return_claims		diff \| blob \| history