Details

    • Sub-task
    • Status: Closed
    • Major
    • Resolution: Resolved
    • None
    • None
    • None
    • None

    Description

      To reproduce:
      1) you should have admin rights
      2) open admin page
      3) become a ordinary user
      4) click Back in browser

      Observed: ordinary user can get access to admin page
      Expected: admin page must be inaccessible for ordinary user

      Attachments

        Activity

          Fixed. Please review.

          mafanasiev Maxim Afanasiev added a comment - Fixed. Please review.
          anovikov Andrey Novikov added a comment -

          Reviewed. Please fix footer for 403, 404 page.

          anovikov Andrey Novikov added a comment - Reviewed. Please fix footer for 403, 404 page.

          I've faced with unexpected 403 page in different cases. I'm just worked as usual and got the 403 in different parts of the site absolutely accidentally.
          Also please fix (add 'are') the 403 text to: You are not authorized.

          pkonstantinov Pavel Konstantinov added a comment - I've faced with unexpected 403 page in different cases. I'm just worked as usual and got the 403 in different parts of the site absolutely accidentally. Also please fix (add 'are') the 403 text to: You are not authorized.

          Fixed. Please review.

          mafanasiev Maxim Afanasiev added a comment - Fixed. Please review.
          anovikov Andrey Novikov added a comment -

          Reviewed. Refactored. Merged.

          anovikov Andrey Novikov added a comment - Reviewed. Refactored. Merged.

          People

            Unassigned Unassigned
            pkonstantinov Pavel Konstantinov
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: