Ajax Requests should probably check for a valid session #5865
Labels
Comments
|
I can confirm. We just swap the eye image and the request fails. There might be tons of other such cases so I guess best would be to redirect to the login page. Here's a quick attempt: #5868 |
leofeyer
added a commit
that referenced
this issue
Mar 14, 2023
Description ----------- Fixes #5865 Just a quick attempt to fix this issue in a general manner. Not sure if that's the best way to go but we'll see :) Commits ------- a3b90aa Always redirect to the back end in case of ajax requests and an expir… 3d09ed3 Adjust implementation 346805f CS Co-authored-by: Leo Feyer <1192057+leofeyer@users.noreply.github.com>
leofeyer
added a commit
to contao/core-bundle
that referenced
this issue
Mar 14, 2023
Description ----------- Fixes contao/contao#5865 Just a quick attempt to fix this issue in a general manner. Not sure if that's the best way to go but we'll see :) Commits ------- a3b90aaa Always redirect to the back end in case of ajax requests and an expir… 3d09ed32 Adjust implementation 346805f2 CS Co-authored-by: Leo Feyer <1192057+leofeyer@users.noreply.github.com>
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
Affected version(s)
4.13
Description
Lets pretend you have a BE-Page open in your browser and for whatever reason your session has expired.
You are still "able" to hide/unhide elements and get (fake)feedback in the form of an icon colorchange. The invalid session does not reveal itself at this point.
The text was updated successfully, but these errors were encountered: