Fixes #1260 Widgetize now explicitely loads privileges based on the specified token_auth from the request. If not found, the request will be authenticated using the fallback login mechanism (cookie).

git-svn-id: http://dev.piwik.org/svn/trunk@2151 59fd770c-687e-43c8-a1e3-f5a4ff64c105
author: mattpiwik <matthieu.aubry@gmail.com> 2010-05-07 12:57:27 +0400
committer: mattpiwik <matthieu.aubry@gmail.com> 2010-05-07 12:57:27 +0400
commit: db5143b0cc7f714cf2d44b61cb18ee822ccff5b7 (patch)
tree: 594bd3ca6d1d7899f463d930bbc9aed65aaa19dd /plugins/Widgetize/Controller.php
parent: 798d243e0b506ac7385f824c966e04720bd50955 (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/plugins/Widgetize/Controller.php b/plugins/Widgetize/Controller.php
index 35e81eee39..700c9885f7 100644
--- a/plugins/Widgetize/Controller.php
+++ b/plugins/Widgetize/Controller.php
@@ -43,6 +43,7 @@ class Piwik_Widgetize_Controller extends Piwik_Controller
 	
 	function js()
 	{
+		Piwik_API_Request::reloadAuthUsingTokenAuth();
 		$controllerName = Piwik_Common::getRequestVar('moduleToWidgetize');
 		$actionName = Piwik_Common::getRequestVar('actionToWidgetize');
 		$parameters = array ( $fetch = true );
@@ -56,6 +57,7 @@ class Piwik_Widgetize_Controller extends Piwik_Controller
 
 	function iframe()
 	{		
+		Piwik_API_Request::reloadAuthUsingTokenAuth();
 		$controllerName = Piwik_Common::getRequestVar('moduleToWidgetize');
 		$actionName = Piwik_Common::getRequestVar('actionToWidgetize');
 		$parameters = array ( $fetch = true );
author	mattpiwik <matthieu.aubry@gmail.com>	2010-05-07 12:57:27 +0400
committer	mattpiwik <matthieu.aubry@gmail.com>	2010-05-07 12:57:27 +0400
commit	db5143b0cc7f714cf2d44b61cb18ee822ccff5b7 (patch)
tree	594bd3ca6d1d7899f463d930bbc9aed65aaa19dd /plugins/Widgetize/Controller.php
parent	798d243e0b506ac7385f824c966e04720bd50955 (diff)