11 Oct
2024
11 Oct
'24
12:20 p.m.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=37041 --- Comment #16 from Marcel de Rooy <m.de.rooy@rijksmuseum.nl> --- (In reply to Jonathan Druart from comment #15)
Only to share what I had in mind. It fixes the problem it seems, but can eventually introduce new ones...
Now the session's id is stored in userenv, so we don't want to leak it! It seems safe however.
Yeah, interesting. But in terms of security perhaps not the way we want to go.. -- You are receiving this mail because: You are watching all bug changes. You are the assignee for the bug.