dinislage/web2py
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fixed security issue again, thanks Niphlod

Browse Source
This commit is contained in:
mdipierro
2014-08-26 14:38:09 -05:00
parent 59630f0a14
commit a3f3496709
4 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
VERSION
+1 -1
View File
@@ -1 +1 @@
Version 2.9.6-beta+timestamp.2014.08.26.14.30.42
Version 2.9.6-beta+timestamp.2014.08.26.14.38.05
applications/admin/controllers/appadmin.py
+1 -1
View File
@@ -32,7 +32,7 @@ try:
except:
hosts = (http_host, )
if request.env.http_x_forwarded_for or request.is_https:
if request.is_https:
session.secure()
elif (remote_addr not in hosts) and (remote_addr != "127.0.0.1") and \
(request.function != 'manage'):
applications/examples/controllers/appadmin.py
+1 -1
View File
@@ -32,7 +32,7 @@ try:
except:
hosts = (http_host, )
if request.env.http_x_forwarded_for or request.is_https:
if request.is_https:
session.secure()
elif (remote_addr not in hosts) and (remote_addr != "127.0.0.1") and \
(request.function != 'manage'):
applications/welcome/controllers/appadmin.py
+1 -1
View File
@@ -32,7 +32,7 @@ try:
except:
hosts = (http_host, )
if request.env.http_x_forwarded_for or request.is_https:
if request.is_https:
session.secure()
elif (remote_addr not in hosts) and (remote_addr != "127.0.0.1") and \
(request.function != 'manage'):