Only load user from session if other auth mechanisms aren't present.
This commit is contained in:
parent
5f16c10e0a
commit
f0e7b84001
|
@ -263,8 +263,6 @@ if ( ZM_OPT_USE_AUTH ) {
|
|||
} else {
|
||||
// Non token based auth
|
||||
|
||||
$user = userFromSession();
|
||||
|
||||
if ( ZM_AUTH_HASH_LOGINS && empty($user) && !empty($_REQUEST['auth']) ) {
|
||||
$user = getAuthUser($_REQUEST['auth']);
|
||||
} else if (
|
||||
|
@ -280,6 +278,9 @@ if ( ZM_OPT_USE_AUTH ) {
|
|||
return;
|
||||
}
|
||||
$user = $ret[0];
|
||||
} else {
|
||||
$user = userFromSession();
|
||||
|
||||
}
|
||||
|
||||
if ( !empty($user) ) {
|
||||
|
|
Loading…
Reference in New Issue