0002-Only-perform-login-action-on-explicit-POST.patch - Redmine

Patch #25653 » 0002-Only-perform-login-action-on-explicit-POST.patch

Holger Just, 2017-04-20 13:52

       # Login request and validation
       def login
         if request.get?
         if request.post?
           authenticate_user
         else
           if User.current.logged?
             redirect_back_or_default home_url, :referer => true
           end
         else
           authenticate_user
         end
       rescue AuthSourceException => e
         logger.error "An error occurred when authenticating #{params[:username]}: #{e.message}"

(2-2/2)