Menu
▾
▴
Re: [Phpwiki-talk] User Authtification with phpwiki
|
From: Arnaud F. <ar...@cr...> - 2004-09-28 14:04:17
|
Le mar 28/09/2004 =E0 14:39, Reini Urban a =E9crit :
> Arnaud Fontaine schrieb:
> > Le mer 22/09/2004 =E0 17:44, Reini Urban a =E9crit :
> >>That's not an auth probem, but a session problem.
> >>
> >>Maybe our (automatic) HttpAuth should be fixed against session problems=
.=20
> >>I'll test that.
> >=20
> > Another HttpAuth problem is that you can't get Admin privilege ...=20
> > That's a BIG problem.
>=20
> Ah! Good catch.
I've just checked the _HttpAuthPassUser class.
In method userExists() wich is called in the class constructor, you set
the user level to WIKIAUTH_USER ... without checking if the user is
admin.
...
$this->_level =3D WIKIAUTH_USER; <---- HERE !!!!
return $this;
...
hmm ... I'm to lazy to go check the code to find how to correct this ;)
I guess you have to make a _AdminUser object with the login and password
then call the checkPass method ?
--=20
Arnaud Fontaine
Jabber: sh...@ra...
ICQ: 3504789
|
