nik/davical
1
0
Fork 0
mirror of https://gitlab.com/davical-project/davical.git synced 2026-01-27 00:33:34 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Cut access with invalid/expired tickets out immediately.

Browse Source 
Signed-off-by: Andrew McMillan <andrew@morphoss.com>
This commit is contained in:
Andrew McMillan 2010-12-08 12:57:12 +13:00
parent ac190c7277
commit 9bb339e291
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
htdocs/public.php
View File

@ -20,7 +20,8 @@ header( "DAV: $dav");
require_once("CalDAVRequest.php");
$request = new CalDAVRequest();
if ( !isset($request->ticket) && !$request->IsPublic() ) {
if ( !isset($request->ticket) && !$request->IsPublic()
|| (isset($request->ticket) && $request->ticket->expired ) ) {
$request->DoResponse( 403, translate('Anonymous users may only access public calendars') );
}