Opened 11 years ago

Closed 10 years ago

#6 closed task (fixed)

Bearmail logout not logging out

Reported by: Vincent Caron Owned by: zecrazytux
Priority: minor Component: Bearmail
Keywords: Cc:

Description

Steps to reproduce:

  • Login from the auth form
  • Click "logout" on the menu, you are redirected on the auth form
  • Click "help" then use the menu to go the the domain list

Maybe there's simply no authz framework in place, I didn't check :). In this case investigate if CGI::App has some standard way to map runmodes with an authorization map or function, or something like that.

We need to write down the proper authz matrix: level (user/postmaster/admin) vs. runmodes.

Change History (3)

comment:1 Changed 10 years ago by zecrazytux

(In [432]) Added basic warning message when users mistype their email or password, see #6

comment:2 Changed 10 years ago by zecrazytux

(In [435]) Really Log users out, see #6

comment:3 Changed 10 years ago by zecrazytux

Resolution: fixed
Status: newclosed

Don't mind the first commit, it is related to #5...

"Logout" in the menu was a simple redirection to the login page, I created a logout runmode that deletes the user session and redirects him to the login page.

Why would a simple user log in ?

Note: See TracTickets for help on using tickets.