#5782: Referer check should be controllable with Security.level = high
-----------------------------------------------------+----------------------
Reporter: pearj | Owner:
Type: Bug | Status: closed
Priority: Medium | Milestone: 1.2.x.x
Component: General | Version: RC3
Severity: Normal | Resolution: duplicate
Keywords: session login Auth.redirect external | Php_version: PHP 5
Cake_version: |
-----------------------------------------------------+----------------------
Changes (by mark_story):
* status: reopened => closed
* resolution: => duplicate
* summary: Auth.redirect session value lost when linking from external
site. => Referer check should be controllable
with Security.level = high
Comment:
Even quicker is to set your Security.level to low. At low there is no
referer check. Currently the functionality works as designed. Adding
features at an RC creates a slippery slope of precedence. Since you've
stated that this is a essentially a duplicate of #5605, it can be closed
as such.
--
Ticket URL: <https://trac.cakephp.org/ticket/5782#comment:8>
CakePHP : The Rapid Development Framework for PHP <https://trac.cakephp.org/>
Cake is a rapid development framework for PHP which uses commonly known design
patterns like ActiveRecord, Association Data Mapping, Front Controller and MVC.
Our primary goal is to provide a structured framework that enables PHP users at
all levels to rapidly develop robust web applications, without any loss to
flexibility.
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"tickets cakephp" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at
http://groups.google.com/group/tickets-cakephp?hl=en
-~----------~----~----~----~------~----~------~--~---
