[Bug 117] New: Authentication URLs contain failed authentication information
http://bugs.koha.org/cgi-bin/bugzilla/show_bug.cgi?id=117 Summary: Authentication URLs contain failed authentication information Product: Koha Version: 1.2.3 Platform: PC OS/Version: other Status: NEW Severity: normal Priority: P2 Component: Authentication AssignedTo: tonnesen@cmsd.bc.ca ReportedBy: tonnesen@cmsd.bc.ca QAContact: koha-devel@lists.sourceforge.net If a user types in a wrong password, the userid and password start showing up in the URL. This is a result of using the $self_url function to preserve form inputs when a user gets logged out due to inactivity. Need to check that username and password aren't getting passed in this way. ------- You are receiving this mail because: ------- You are the QA contact for the bug, or are watching the QA contact.
participants (1)
-
bugzilla-daemon@wilbur.katipo.co.nz