Re: [podwiki] MAJOR BUG detected - user-based authentication/authorization FAILURE

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

On Mon, May 24, 2004 at 09:54:13AM +0200, Thomas Linden wrote:
> I've detected a major bug in the PodWiki Authentication code which
> affects user-based authorization. If a page ise read or write protected
> by user (write = user:scip) then any logged in user will be granted
> permission. The authorization code ignores the "user:" stuff completely.

fixed in latest CVS, I'll release 0.8.0 today or tomorrow..

Tom

-- 
 Thomas Linden   (http://www.daemon.de/)  tom at co dot daemon dot de
 $_=`perl -v`;s;^.*ll;;s;$^=unpack"u", "'8V]D;')E<```";s;\W;;gs;$/=7*
 ($^=~s;.;;g);%^=map{$_=>1}split//,lc;$_=join$\, (sort keys(%^))[map{
 ord($_)-$/}split//,'1I7E13?@E:7C1A7C=1:35<7C'];s"0(.)" \U$1"g;print;