Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

Prevent non admin user to access restricted information

Download Browse

This is part of story #10062 Users & groups management overhaul If user forges call to bind_ugroup_confirm.php, then we should not leak data and instead reject the request. Change-Id: I593114f1cd1cb52d530c2eae177e3c7b79f585bf

+2 −0
Nicolas Terray (nterray) 2017-11-24 16:38
Nicolas Terray (nterray) 2017-11-24 16:41
e3233ebca7c7e28aff42824d28d18a643114f750
defbb2813227e5700ead30dc90a4127c4aba1094
git #tuleap/stable/e3233ebca7c7e28aff42824d28d18a643114f750

Modified Files

Side by side diff
Inline diff
Name
M plugins/ldap/www/bind_ugroup_confirm.php +2 −0 Go to diff View file