diff options
| author |  Alexandre Alapetite <alexandre@alapetite.fr>
| 2018-01-01 22:11:15 +0100 |
|---|---|---|
| committer | Alexandre Alapetite <alexandre@alapetite.fr>
| 2018-01-01 22:11:15 +0100 |
| commit | ebe7be4e6b41a115688bc52350470e7f64f949f7 (patch) | |
| tree | d00aba7ad35500962a4ce6a18a57ca3f159a1fb2 /app/Models/Auth.php | |
| parent | 24860750e30b65bfb40baf5e1e8b01aa3f8411f9 (diff) | |
Fix login bug when HTTP REMOTE_USER changes
https://github.com/YunoHost-Apps/freshrss_ynh/issues/33
Diffstat (limited to 'app/Models/Auth.php')
| -rw-r--r-- | app/Models/Auth.php | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/app/Models/Auth.php b/app/Models/Auth.php index 4de058999..32b673b6d 100644 --- a/app/Models/Auth.php +++ b/app/Models/Auth.php @@ -13,6 +13,11 @@ class FreshRSS_Auth { * This method initializes authentication system. */ public static function init() { + if (Minz_Session::param('REMOTE_USER', '') !== httpAuthUser()) { + //HTTP REMOTE_USER has changed + self::removeAccess(); + } + self::$login_ok = Minz_Session::param('loginOk', false); $current_user = Minz_Session::param('currentUser', ''); if ($current_user === '') { @@ -58,6 +63,7 @@ class FreshRSS_Auth { $login_ok = $current_user != ''; if ($login_ok) { Minz_Session::_param('currentUser', $current_user); + Minz_Session::_param('REMOTE_USER', $current_user); } return $login_ok; case 'none': |