diff options
| author |  Alexandre Alapetite <alexandre@alapetite.fr>
| 2018-01-01 22:33:22 +0100 |
|---|---|---|
| committer | Alexandre Alapetite <alexandre@alapetite.fr>
| 2018-01-01 22:33:22 +0100 |
| commit | 7e52d6a7a4b1435a9ec7795fdb87f42bf1ddb6cf (patch) | |
| tree | 7fa520c38fe6d7c09a5348f5d803ec45fe744d6b /app/Models | |
| parent | 73b8fdc1cb172ab81261cad6cf6106e077ab8cdd (diff) | |
| parent | eb03c2607a0d6c62bbf9670083fe4e81c468ebbe (diff) | |
Merge branch 'dev' of https://github.com/FreshRSS/FreshRSS into FreshRSS/dev
Diffstat (limited to 'app/Models')
| -rw-r--r-- | app/Models/Auth.php | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/app/Models/Auth.php b/app/Models/Auth.php index 4de058999..32b673b6d 100644 --- a/app/Models/Auth.php +++ b/app/Models/Auth.php @@ -13,6 +13,11 @@ class FreshRSS_Auth { * This method initializes authentication system. */ public static function init() { + if (Minz_Session::param('REMOTE_USER', '') !== httpAuthUser()) { + //HTTP REMOTE_USER has changed + self::removeAccess(); + } + self::$login_ok = Minz_Session::param('loginOk', false); $current_user = Minz_Session::param('currentUser', ''); if ($current_user === '') { @@ -58,6 +63,7 @@ class FreshRSS_Auth { $login_ok = $current_user != ''; if ($login_ok) { Minz_Session::_param('currentUser', $current_user); + Minz_Session::_param('REMOTE_USER', $current_user); } return $login_ok; case 'none': |