Improve code redirection for indexController

- add comments - forward request is done in the controller (no Minz_Request::forward() in the view, please) - "soft" forward to the login form (no need of 302) - show a 403 page (no authenticated) for rss output when token is wrong
author: Marien Fressinaud <dev@marienfressinaud.fr> 2014-02-15 11:43:07 +0100
committer: Marien Fressinaud <dev@marienfressinaud.fr> 2014-02-15 11:43:07 +0100
commit: a34941f41875bcc9d260c8dfcf9d44a00f835bc9 (patch)
tree: bc05f9dfaff8166a791261551cb45f7dd20465a3 /app/Controllers/feedController.php
parent: fb7bc50673f226070c5399bd6bbf07b91eeda01e (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/app/Controllers/feedController.php b/app/Controllers/feedController.php
index 7114fc196..c718fcd5c 100755
--- a/app/Controllers/feedController.php
+++ b/app/Controllers/feedController.php
@@ -3,7 +3,10 @@
 class FreshRSS_feed_Controller extends Minz_ActionController {
 	public function firstAction () {
 		if (!$this->view->loginOk) {
-			$token = $this->view->conf->token;	//TODO: check the token logic again, and if it is still needed
+			// Token is useful in the case that anonymous refresh is forbidden
+			// and CRON task cannot be used with php command so the user can
+			// set a CRON task to refresh his feeds by using token inside url
+			$token = $this->view->conf->token;
 			$token_param = Minz_Request::param ('token', '');
 			$token_is_ok = ($token != '' && $token == $token_param);
 			$action = Minz_Request::actionName ();
author	Marien Fressinaud <dev@marienfressinaud.fr>	2014-02-15 11:43:07 +0100
committer	Marien Fressinaud <dev@marienfressinaud.fr>	2014-02-15 11:43:07 +0100
commit	a34941f41875bcc9d260c8dfcf9d44a00f835bc9 (patch)
tree	bc05f9dfaff8166a791261551cb45f7dd20465a3 /app/Controllers/feedController.php
parent	fb7bc50673f226070c5399bd6bbf07b91eeda01e (diff)