[TYPO3-core] RFC: #7189: Bugfix: Processing of loginSecurityLevel in t3lib_userauth
Steffen Kamper
steffen at sk-typo3.de
Thu Jan 17 13:08:35 CET 2008
"Steffen Ritter" <info at rs-websystems.de> schrieb im Newsbeitrag
news:mailman.1.1200570989.23586.typo3-team-core at lists.netfielders.de...
> This is an SVN patch request.
>
> Type: Bugfix
>
> Bugtracker references:
> http://bugs.typo3.org/view.php?id=7189
>
> Branches:
> trunk
>
> Problem:
> t3lib_userauth::start() does not set t3_lib_userauth::security_level
> depending on a change of $TYPO3_CONF_VARS[FE/BE]['loginsecurityLevel']
> but t3lib_userauth::processLoginData() changes the array of loginData
> based upon this information.
> Due to this, Frontend Login with challenged oder superchallenged mode is
> not possible, because $loginData['uident'] becomes cleared.
>
> Solution:
> adding:
> if ( $TYPO3_CONF_VARS[$this->loginType]['loginSecurityLevel'] ) {
> $this->security_level =
> $TYPO3_CONF_VARS[$this->loginType]['loginSecurityLevel'];
> }
>
> to t3lib_userauth::start();
>
>
> Notes:
> Se Patch attached
>
> Greetings
>
> Steffen
Hi Steffen,
in general i agree. but you have to account for prior settings, see comment
above:
// set level to normal if not already set
in this case you overwrite it.
vg Steffen
More information about the TYPO3-team-core
mailing list