Welcome to mirror list, hosted at ThFree Co, Russian Federation.

github.com/matomo-org/matomo.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/plugins/Widgetize
diff options
context:
space:
mode:
authorThomas Steur <tsteur@users.noreply.github.com>2020-08-11 01:39:06 +0300
committerGitHub <noreply@github.com>2020-08-11 01:39:06 +0300
commitb09093780b6a906a0522bda2a8137ca280ab3f65 (patch)
treedb5733daafaa9c6ef29b1c65af835f8ae9844f6b /plugins/Widgetize
parentfc08d43ed00315180cdc2907a35086add7a04ad2 (diff)
Only allow widgetize and token usage for view users (#16263)
Diffstat (limited to 'plugins/Widgetize')
-rw-r--r--plugins/Widgetize/Controller.php3
1 files changed, 1 insertions, 2 deletions
diff --git a/plugins/Widgetize/Controller.php b/plugins/Widgetize/Controller.php
index d0ef5187c8..e76d8b7e5f 100644
--- a/plugins/Widgetize/Controller.php
+++ b/plugins/Widgetize/Controller.php
@@ -34,8 +34,7 @@ class Controller extends \Piwik\Plugin\Controller
$token_auth = Common::getRequestVar('token_auth', '', 'string');
if ($token_auth !== ''
- && Access::getInstance()->isUserHasSomeAdminAccess()
- && !defined('PIWIK_TEST_MODE')) {
+ && Access::getInstance()->isUserHasSomeWriteAccess()) {
throw new \Exception(Piwik::translate('Widgetize_ViewAccessRequired'));
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-29 19:46:23 +0300