Congegni/sintonia
7
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Fixed CSRF token checking in MediaController (broken by last 2 commits)

Browse source 
* Also fixed getOwnerId(), no longer calls a non-existent function
This commit is contained in:
Albert Santoni 2015-01-22 12:20:13 -05:00
parent 476128ce87
commit d5ee710f89
2 changed files with 11 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

2
airtime_mvc/application/modules/rest/controllers/MediaController.php
View file

@ -338,7 +338,7 @@ class Rest_MediaController extends Zend_Rest_Controller
private function getOwnerId()
{
try {
if ($this->verifySession()) {
if (Zend_Auth::getInstance()->hasIdentity()) {
$service_user = new Application_Service_UserService();
return $service_user->getCurrentUser()->getDbId();
} else {