mirror of https://github.com/MISP/MISP
fix: [API] Add object request has been black-holed. #3271
- blanket disabling the security component for API requests clashes with explicit disabling of certain security component features in the objects controller causing exceptionspull/3301/head
parent
37b856d60a
commit
9ffd05e57d
|
@ -112,7 +112,6 @@ class AppController extends Controller {
|
|||
$this->set('queryVersion', $this->__queryVersion);
|
||||
$this->loadModel('User');
|
||||
$auth_user_fields = $this->User->describeAuthFields();
|
||||
|
||||
//if fresh installation (salt empty) generate a new salt
|
||||
if (!Configure::read('Security.salt')) {
|
||||
$this->loadModel('Server');
|
||||
|
@ -339,7 +338,6 @@ class AppController extends Controller {
|
|||
}
|
||||
}
|
||||
unset($base_dir);
|
||||
|
||||
// We don't want to run these role checks before the user is logged in, but we want them available for every view once the user is logged on
|
||||
// instead of using checkAction(), like we normally do from controllers when trying to find out about a permission flag, we can use getActions()
|
||||
// getActions returns all the flags in a single SQL query
|
||||
|
|
Loading…
Reference in New Issue