tyler.durden/icingaweb2
1
0
Fork 0
mirror of https://github.com/Icinga/icingaweb2.git synced 2025-07-24 22:34:24 +02:00
Code Issues Packages Projects Releases Wiki Activity

Don't redirect unauthenticated API requests to the login page

Browse Source 
refs #11151
This commit is contained in:
Alexander A. Klimov 2016-02-15 13:36:29 +01:00
parent c5281935c6
commit 8a4f15d32c
1 changed files with 1 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
library/Icinga/Authentication/Auth.php
View File

@ -282,10 +282,7 @@ class Auth
if ($request->isXmlHttpRequest() || ! $request->isApiRequest()) { if ($request->isXmlHttpRequest() || ! $request->isApiRequest()) {
return false; return false;
} }
if (($header = $request->getHeader('Authorization')) === false) { if (($header = $request->getHeader('Authorization')) === false || empty($header)) {
return false;
}
if (empty($header)) {
$this->challengeHttp(); $this->challengeHttp();
} }
list($scheme) = explode(' ', $header, 2); list($scheme) = explode(' ', $header, 2);