Uploaded image for project: 'phpBB3'
  1. phpBB3
  2. PHPBB3-10913

Admin is logged out when accessing any url under adm/ without session id

    Details

      Description

      Since this could be triggered by accident or even intentionally by a third party through e.g. an [img] tag in a post, it's rather annoying for an admin that he gets logged out when going to any URL under adm/ without a session id.

      Instead such URLs should simply return a 401 Not Authorized header and redirect to the board index.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                naderman Nils Adermann
                Reporter:
                naderman Nils Adermann
              • Votes:
                0 Vote for this issue
                Watchers:
                0 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: