Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Fixed issue: User without superadmin permission can enter comfort upd…
…ate page without restriction
- Loading branch information
9a8a031
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
please, please … send 403 error …
9a8a031
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Then : sys admin can check who try to hack server …
9a8a031
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@Shnoulle hahaha yes make sense . but you have to log in anyway before try to do something..
But i will add a 403
9a8a031
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@eddylackmann : yes, it is an old habit on LimeSurvey to use redirects for 401/403 errors. I think it's a bad habit :)
See https://bugs.limesurvey.org/view.php?id=16470 for discussion .