Bug acl apiv2 pandora_enterprise#13065

2025-07-27 07:44:35 +02:00 · 2024-03-13 14:24:29 +01:00 · 2024-03-13 14:24:29 +01:00 · ae1f586971
commit ae1f586971
parent a5491383cf
1 changed files with 4 additions and 1 deletions
--- a/pandora_console/include/lib/Modules/Shared/Middlewares/UserTokenMiddleware.php
+++ b/pandora_console/include/lib/Modules/Shared/Middlewares/UserTokenMiddleware.php
@ -37,6 +37,9 @@ final class UserTokenMiddleware
            );
            $uuid = ($matches[0] ?? '');
            if (empty($uuid) === true) {
                return false;
            }
            $strToken = str_replace($uuid.'-', '', $authorization);
            $validTokenUiniqueServerIdentifier = $this->validateServerIdentifierTokenService->__invoke($strToken);
            if ($validTokenUiniqueServerIdentifier === false) {
@ -55,7 +58,7 @@ final class UserTokenMiddleware
            $token = null;
        }
-        if ($token !== null) {
+        if ($token !== null && $validToken) {
            if (session_status() === PHP_SESSION_NONE) {
                session_start();
            }