diff options
author | mkanat%bugzilla.org <> | 2009-06-05 00:54:38 +0200 |
---|---|---|
committer | mkanat%bugzilla.org <> | 2009-06-05 00:54:38 +0200 |
commit | 31570d1a282a92dd2f9f745414c2c40dbd4bdff1 (patch) | |
tree | ff6c0b961ddd676440f41e7920c4e9dec05f3b91 /Bugzilla.pm | |
parent | f78ab4f463a42bd2a6368f958d831725148bcf9b (diff) | |
download | bugzilla-31570d1a282a92dd2f9f745414c2c40dbd4bdff1.tar.gz bugzilla-31570d1a282a92dd2f9f745414c2c40dbd4bdff1.tar.xz |
Bug 493642: Never include hidden_fields in the header/footer login form, and when a REQUIRE_LOGIN page shows a login form, hide the header/footer login form.
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit
Diffstat (limited to 'Bugzilla.pm')
-rw-r--r-- | Bugzilla.pm | 18 |
1 files changed, 18 insertions, 0 deletions
diff --git a/Bugzilla.pm b/Bugzilla.pm index 7bd40794a..1916fa508 100644 --- a/Bugzilla.pm +++ b/Bugzilla.pm @@ -228,6 +228,10 @@ sub sudo_request { # NOTE: If you want to log the start of an sudo session, do it here. } +sub page_requires_login { + return $_[0]->request_cache->{page_requires_login}; +} + sub login { my ($class, $type) = @_; @@ -235,6 +239,13 @@ sub login { my $authorizer = new Bugzilla::Auth(); $type = LOGIN_REQUIRED if $class->cgi->param('GoAheadAndLogIn'); + + # Allow templates to know that we're in a page that always requires + # login. + if ($type == LOGIN_REQUIRED) { + $class->request_cache->{page_requires_login} = 1; + } + if (!defined $type || $type == LOGIN_NORMAL) { $type = $class->params->{'requirelogin'} ? LOGIN_REQUIRED : LOGIN_NORMAL; } @@ -635,6 +646,13 @@ Logs in a user, returning a C<Bugzilla::User> object, or C<undef> if there is no logged in user. See L<Bugzilla::Auth|Bugzilla::Auth>, and L<Bugzilla::User|Bugzilla::User>. +=item C<page_requires_login> + +If the current page always requires the user to log in (for example, +C<enter_bug.cgi> or any page called with C<?GoAheadAndLogIn=1>) then +this will return something true. Otherwise it will return false. (This is +set when you call L</login>.) + =item C<logout($option)> Logs out the current user, which involves invalidating user sessions and |