Bug affecting remote_auth still present in 1.26.x
Posted: Thu Jan 02, 2014 9:07 pm
Hi,
First off, can I just say how pleased I am that ZoneMinder lives on in the 1.26 series. As a long-time user - from since very nearly the beginning - I was getting rather concerned when we seemed to sticking on v1.25!
That said, I've only just got round to updating, however I have found a bug that has been present since at least as far back as 2009. Specifically, if AUTH_TYPE is set to remote (e.g. if using HTTP auth) then logging in results in an infinite loop. There may be other configuration factors involved to trigger the issue but toggling this one certainly reproduces it at will.
The fix is fairly straightforward - here it is - and requires only a small ordering change to index.php.
If there's a better way to report a bug please do let me know.
First off, can I just say how pleased I am that ZoneMinder lives on in the 1.26 series. As a long-time user - from since very nearly the beginning - I was getting rather concerned when we seemed to sticking on v1.25!
That said, I've only just got round to updating, however I have found a bug that has been present since at least as far back as 2009. Specifically, if AUTH_TYPE is set to remote (e.g. if using HTTP auth) then logging in results in an infinite loop. There may be other configuration factors involved to trigger the issue but toggling this one certainly reproduces it at will.
The fix is fairly straightforward - here it is - and requires only a small ordering change to index.php.
If there's a better way to report a bug please do let me know.