Merge pull request #1787 from goldquest/dev_nopass_whensession

Grant access for valid session to password protected group pads so, if user has valid session, they don't need the password
2025-04-23 08:56:17 -04:00 · 2014-06-17 14:01:16 +02:00 · 2014-06-17 14:01:16 +02:00 · b1b972a2b4
commit b1b972a2b4
parent c627608ea5 842e09a7ad
3 changed files with 14 additions and 0 deletions
--- a/src/node/db/SecurityManager.js
+++ b/src/node/db/SecurityManager.js
@ -223,6 +223,12 @@ exports.checkAccess = function (padID, sessionCookie, token, password, callback)
          //--> grant access
          statusObject = {accessStatus: "grant", authorID: sessionAuthor};
        }
+        //- the setting to bypass password validation is set
+        else if(settings.sessionNoPassword)
+        {
+          //--> grant access
+          statusObject = {accessStatus: "grant", authorID: sessionAuthor};
+        }
        //- the pad is password protected and password is correct
        else if(isPasswordProtected && passwordStatus == "correct")
        {