From 393efc7b736add1534e4b3cc90784eb2891be2b5 Mon Sep 17 00:00:00 2001
From: Nick Clemens <nick@bywatersolutions.com>
Date: Mon, 24 Jan 2022 14:23:29 +0000
Subject: [PATCH] Bug 29914: (QA follow-up) Add comment to explain last case

Signed-off-by: Nick Clemens <nick@bywatersolutions.com>

JD amended patch: remove ref to line number

Signed-off-by: Fridolin Somers <fridolin.somers@biblibre.com>
---
 C4/Auth.pm | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/C4/Auth.pm b/C4/Auth.pm
index 6ea03887ca..650618bacd 100644
--- a/C4/Auth.pm
+++ b/C4/Auth.pm
@@ -1730,6 +1730,8 @@ sub check_cookie_auth {
         } else {
             return ( "anon", $session );
         }
+        # If here user was logged in, but doesn't have correct permissions
+        # could be an 'else' at `if($flags) return "ok"` , but left here to catch any errors
         $session->delete();
         $session->flush;
         C4::Context->_unset_userenv($sessionID);
-- 
2.39.5