moved page level authorisation array initialisation from the controller to the l…

…ogin page (so that the user can use the back button!) git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@407 c91229c3-7414-0410-bfa2-8a42b809f60b

moved page level authorisation array initialisation from the controller to the l…
…ogin page (so that the user can use the back button!) git-svn-id: https://kt-dms.svn.sourceforge.net/svnroot/kt-dms/trunk@407 c91229c3-7414-0410-bfa2-8a42b809f60b
Michael Joseph
1 parent ed03d6f0
Showing 2 changed files with 3 additions and 3 deletions
control.php
presentation/login.php
@@ -40,9 +40,6 @@ if (checkSessionAndRedirect(false)) {
 //  from the sitemap requires group access ie. !Anonymous then redirect to no
 //  permission page)
  
-// reset authorisation flag before checking access
-$_SESSION["pageAccess"] = NULL;
-
 // check whether the users group has access to the requested page
 $page = $default->siteMap->getPage($action, $_SESSION["userID"]);
  
@@ -66,6 +66,9 @@ if ($loginAction == &quot;loginForm&quot;) {
                 $session = new Session();
                 $sessionID = $session->create($userDetails["userID"]);
  
+                // initialise page-level authorisation array
+                $_SESSION["pageAccess"] = NULL;
+                
                 // check for a location to forward to
                 if (isset($redirect) && strlen(trim($redirect))>0) {
                     $url = urldecode($redirect);