Changeset ccc80d1 in github
- Timestamp:
- Oct 14, 2009 4:36:02 AM (4 years ago)
- Branches:
- master, HEAD, courier-fix, dev-browser-capabilities, pdo, release-0.6, release-0.7, release-0.8
- Children:
- b571339
- Parents:
- ab46578
- Files:
-
- 2 edited
Legend:
- Unmodified
- Added
- Removed
-
CHANGELOG
r65c0a0e rccc80d1 2 2 =========================== 3 3 4 - Fix login page loading into an iframe when session expires (#1485952) 4 5 - added option 'force_https_port' in 'force_https' plugin (#1486091) 5 6 - Option 'force_https' replaced by 'force_https' plugin -
index.php
r65c0a0e rccc80d1 143 143 // check client X-header to verify request origin 144 144 if ($OUTPUT->ajax_call) { 145 if (!$RCMAIL->config->get('devel_mode') && rc_request_header('X-RoundCube-Request') != $RCMAIL->get_request_token() ) {145 if (!$RCMAIL->config->get('devel_mode') && rc_request_header('X-RoundCube-Request') != $RCMAIL->get_request_token() && !empty($RCMAIL->user->ID)) { 146 146 header('HTTP/1.1 404 Not Found'); 147 147 die("Invalid Request"); … … 156 156 // not logged in -> show login page 157 157 if (empty($RCMAIL->user->ID)) { 158 159 158 if ($OUTPUT->ajax_call) 160 159 $OUTPUT->redirect(array(), 2000); 161 160 161 if (!empty($_REQUEST['_framed'])) 162 $OUTPUT->command('redirect', $OUTPUT->app->url()); 163 162 164 // check if installer is still active 163 165 if ($RCMAIL->config->get('enable_installer') && is_readable('./installer/index.php')) {
Note: See TracChangeset
for help on using the changeset viewer.
