[Bug 28907] Potential unauthorized access in public REST routes
5 Mar
2025
5 Mar
'25
5:31 p.m.
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=28907 --- Comment #70 from Paul Derscheid <paul.derscheid@lmscloud.de> --- Created attachment 179000 --> https://bugs.koha-community.org/bugzilla3/attachment.cgi?id=179000&action=edit Bug 28907: [With corrected bug id] REST - Remove allow-owner from public password route To test: 1. prove t/db_dependent/api/v1/patrons_password.t 2. Apply patch 3. prove t/db_dependent/api/v1/patrons_password.t Observe success in both cases. https://bugs.koha-community.org/show_bug.cgi?id=28907 Signed-off-by: Victor Grousset/tuxayo <victor@tuxayo.net> Signed-off-by: Marcel de Rooy <m.de.rooy@rijksmuseum.nl> -- You are receiving this mail because: You are watching all bug changes.
496
Age (days ago)
496
Last active (days ago)
0 comments
1 participants
participants (1)
-
bugzilla-daemon@bugs.koha-community.org