Welcome to mirror list, hosted at ThFree Co, Russian Federation.

github.com/matomo-org/matomo.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/core/Plugin/Controller.php
diff options
context:
space:
mode:
Diffstat (limited to 'core/Plugin/Controller.php')
-rw-r--r--core/Plugin/Controller.php4
1 files changed, 3 insertions, 1 deletions
diff --git a/core/Plugin/Controller.php b/core/Plugin/Controller.php
index 43e385f263..b65823be58 100644
--- a/core/Plugin/Controller.php
+++ b/core/Plugin/Controller.php
@@ -828,7 +828,9 @@ abstract class Controller
*/
protected function checkTokenInUrl()
{
- if (Common::getRequestVar('token_auth', false) != Piwik::getCurrentUserTokenAuth()) {
+ $requestTokenAuth = Common::getRequestVar('token_auth', false);
+ $currentUserTokenAuth = Piwik::getCurrentUserTokenAuth();
+ if ($requestTokenAuth !== $currentUserTokenAuth) {
throw new NoAccessException(Piwik::translate('General_ExceptionInvalidToken'));
}
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-21 07:14:03 +0300