Fix PHP notices #234
Fix PHP notices #234
Conversation
Caused by accessing undefined index REMOTE_USER.
Failure to do this causes a PHP notice error, which can happen e.g. if a plugin starts a session.
|
Hi Andreas, Thanks for your feedback and guidance. Having the session opening is a good idea on principle, but it probably would not work for my specific case since the session is opened by the MantisBT API, which has to be included for the auth plugin to work. So, on second thoughts, maybe what I need to do is tweak the auth plugin to selectively call the required MantisBT APIs instead of simply including all of them through the main core.php; that automatically starts a session, but in fact it's probably not needed for what the plugin needs to do. I'll think about it. Do you have any comments or objections about the other commit ? If not, do you want to cherry-pick that, or should I submit a separate pull request ? In any case, I think this one can be closed. |
|
I think the intention is correct, but the implementation above looks flawed. E.g. in auth.php it looks like your shifting the problem from $_SERVER['REMOTE_USER'] to $id and $rest. In this instance, maybe ensuring $_SERVER['REMOTE_USER'] is always initialized might be a better solution. I'll close this PR, but we would accept something similar with a better implementation. Killing notices is good. |
|
my above comment isn't strictly correct :) however, in checking the code referenced in auth.php, we've discovered a number of flaws...
|
During tests following conversion of the old MantisBT authentication back-end to a plugin, I realized that DokuWiki triggers a number of PHP notices.