[Tickets #11538] Re: Embedding calendars broken
noreply at bugs.horde.org
noreply at bugs.horde.org
Thu Mar 28 18:44:35 UTC 2013
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/11538
------------------------------------------------------------------------------
Ticket | 11538
Updated By | Git Commit <commits at lists.horde.org>
Summary | Embedding calendars broken
Queue | Kronolith
Version | Git master
Type | Bug
State | Resolved
Priority | 3. High
Milestone | 4
Patch |
Owners | Michael Rubinsky, Michael Slusarz
------------------------------------------------------------------------------
Git Commit <commits at lists.horde.org> (2013-03-28 18:44) wrote:
Changes have been made in Git (master):
commit 2884204d9b175d8729c1e662ba53cbeb9c03e7e6
Author: Michael M Slusarz <slusarz at horde.org>
Date: Thu Mar 28 11:58:10 2013 -0600
[mms] SECURITY: Fix token validation of AJAX actions.
Mea culpa. This commit broke things:
commit 83dcfa1448ba2b142623839aee78a2160eb25cb0
Author: Michael M Slusarz <slusarz at horde.org>
Date: Wed Oct 17 13:27:10 2012 -0600
[mms] Allow AJAX handler methods to be marked externally accessible
(i.e. no session token checking) (Bug #11538).
This commit failed to extend the injector to pass the token argument to
the AJAX Application handler. Although we should always do this check,
regardless of whether the token is empty anyway.
framework/Core/lib/Horde/Core/Ajax/Application.php | 5 ++---
framework/Core/lib/Horde/Core/Factory/Ajax.php | 5 +++--
framework/Core/package.xml | 2 ++
3 files changed, 7 insertions(+), 5 deletions(-)
http://git.horde.org/horde-git/-/commit/2884204d9b175d8729c1e662ba53cbeb9c03e7e6
More information about the bugs
mailing list