commit dea0f490f2d234ef937352efae4aafdfd481b34a
parent 39294c2dae5511bcb4d71f9cedfece7bd5a7afd4
Author: dankert <devnull@localhost>
Date: Wed, 9 Dec 2009 21:00:35 +0100
Debug-Meldungen, wenn die Ausführung aufgrund von Sicherheitserwägungen abgelehnt wird.
Diffstat:
1 file changed, 3 insertions(+), 1 deletion(-)
diff --git a/do.php b/do.php
@@ -255,7 +255,8 @@ $subactionConfig = $do->actionConfig[$subaction];
// Eine Subaktion ohne "guest=true" verlangt einen angemeldeten Benutzer.
if ( !isset($subactionConfig['guest']) || !$subactionConfig['guest'] )
if ( !is_object($do->currentUser) )
- {
+ {
+ Logger::debug('No session and no guest action occured, maybe session expired');
Http::notAuthorized( lang('SESSION_EXPIRED') );
exit;
}
@@ -264,6 +265,7 @@ if ( !isset($subactionConfig['guest']) || !$subactionConfig['guest'] )
if ( isset($do->actionConfig['admin']) && $do->actionConfig['admin'] )
if ( !$do->currentUser->isAdmin )
{
+ Logger::debug('Admin action, but user '.$do->currentUser->name.' is not an admin');
Http::notAuthorized( lang('SESSION_EXPIRED') );
exit;
}
