A user could access any page if they knew the URL without
authenticating. Users are now redirected to the login page if they try
to access another page without being logged in.
This patch requires that the User roles, PUA and RLS patches be applied
first
James
Over this summer I have been doing some work for Crocodile RCS on
Siremis and have made a number of enhancements. I will be sending
patches for these enhancements in a series of emails to this list.
Here is the first...
The users member and guest were assigned to opposite roles. Member and
guest now both are directed to SER page as opposed to accessing the
Administration page and getting an access error.
Hi,
Seems like _k/permissions module will crash the router if no rule is set
- no rules list files are provided as well as no db_url (more likely to
occur if wrong defines are used).
Happens on K 3.1.3, but seems that master is still susceptible. The
"addr_hash_table" var remains 0 here and being unconditionally deref'ed
by script funcs (like allow_source_address() ).
A rather artificial case, but still, a warning might be preferable.
Bogdan.
Hi,
I've been trying to use the dispatcher module in load balancing
distribution scenario, but I get this "cannot uid for dst addr" error,
when ds_next_dst() is invoked.
Went through the sources and I was wondering if there isn't actually a
bug/typo, as the attached diff (against master) tries to fix.
Thanks,
Bogdan.