View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 5833 | Composr | core | public | 2024-08-01 00:06 | 2024-08-01 00:11 |
| Reporter | PDStig | Assigned To | PDStig | ||
| Priority | high | Severity | feature | ||
| Status | resolved | Resolution | fixed | ||
| Product Version | 11.beta1 | ||||
| Summary | 5833: Improve keep_fatalistic | ||||
| Description | Improve keep_fatalistic in the following ways: * Add a keep_fatalistic config option which can override the URL query parameter * Protect use of keep_fatalistic in the URL; ignore if the current member is not a super administrator * Add a Tempcode symbol for checking the current fatalistic value since a simple GET check will no longer work | ||||
| Tags | Roadmap: v11 | ||||
| Attach Tags | |||||
| Attached Files | |||||
| Time estimation (hours) | |||||
| Sponsorship open | |||||
|
|
Fixed in Git commit 6e9fab9522 (https://gitlab.com/composr-foundation/composr/commit/6e9fab9522 - link will become active once code pushed to GitLab) |
|
|
A hotfix (a TAR of files to upload) has been uploaded to this issue. Only apply this hotfix if you absolutely need it and cannot wait until the next release of Composr (releases are more reliable and strictly tested). As of Composr version 11, the recommended way to apply a hotfix is by following the same steps as an upgrade (https://baseurl/upgrader.php, use the hotfix on the step “Transfer across new/updated files”). The upgrader will automatically skip files belonging to addons you do not have installed or that are newer on disk than in the hotfix. Otherwise, you can manually extract and replace these files (do not replace if your on-disk file is newer than the one in the hotfix). Always take backups of your site or at least files you are replacing before applying a hotfix. Not sure how to extract TAR files to your Windows computer? Try 7-zip (http://www.7-zip.org/). |
|
|
"* Add a keep_fatalistic config option which can override the URL query parameter" This was implemented to allow better debugging when doing external automated HTTP testing (especially to check form validation) "* Protect use of keep_fatalistic in the URL; ignore if the current member is not a super administrator" ...oops. This was a security oversight. "* Add a Tempcode symbol for checking the current fatalistic value since a simple GET check will no longer work" ...because we have a new current_fatalistic() function. |
