Uploaded image for project: 'phpBB'
  1. phpBB
  2. PHPBB-10913

Admin is logged out when accessing any url under adm/ without session id

    XMLWordPrintable

Details

    Description

      Since this could be triggered by accident or even intentionally by a third party through e.g. an [img] tag in a post, it's rather annoying for an admin that he gets logged out when going to any URL under adm/ without a session id.

      Instead such URLs should simply return a 401 Not Authorized header and redirect to the board index.

      Attachments

        Issue Links

          Activity

            People

              naderman Nils Adermann [X] (Inactive)
              naderman Nils Adermann [X] (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: