[Koha-bugs] [Bug 33815] Crash when librarian changes their own username in the staff interface
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Thu May 25 01:54:11 CEST 2023
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=33815
--- Comment #11 from David Cook <dcook at prosentient.com.au> ---
(In reply to David Cook from comment #10)
> I might have an idea for this one...
The ID that can't be changed is borrowernumber, so in check_cookie_auth() we
should get $patron using $session->param('number') instead of
userid/cardnumber;
But... the $session will still contain the wrong details. In theory, this same
problem applies beyond just userid/id. If the user's details are changed and
the session details are used anywhere else, they'll be wrong until they log out
and log back in. (Of course, that's not uncommon among many systems.)
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list