AS1024
/
Kanboard-Prod
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Improve authentication

This commit is contained in:
Frédéric Guillot 2014-02-08 18:14:32 -05:00
parent f93ce1fd7f
commit a3f365a324
1 changed files with 13 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

17
controllers/base.php
View File

@ -40,16 +40,25 @@ abstract class Base
$this->board = new \Model\Board;
}
public function beforeAction($controller, $action)
private function noAuthAllowed($controller, $action)
{
$this->session->open();
$public = array(
'user' => array('login', 'check'),
'task' => array('add'),
);
if (! isset($_SESSION['user']) && ! isset($public[$controller]) && ! in_array($action, $public[$controller])) {
if (isset($public[$controller])) {
return in_array($action, $public[$controller]);
}
return false;
}
public function beforeAction($controller, $action)
{
$this->session->open(dirname($_SERVER['PHP_SELF']));
if (! isset($_SESSION['user']) && ! $this->noAuthAllowed($controller, $action)) {
$this->response->redirect('?controller=user&action=login');
}