Hi,

when we tried this module we noticed strange behaviour. If you having enabled cache, nodes for first view are redirect to page where is needed to fill password, for that part it's ok. But on repeated view (without sending password) node is happily shown without any protection, which is bug.

I will send patch, later.

Comments

JoeVoatt created an issue. See original summary.

  • oksana-c committed 2ec8695 on 8.x-1.x 
    Issue #2973524: Prevent access check bypass when cache is enabled.

oksana-c credited MegaChriz.

oksana-c’s picture

oksana-c commented
Status: Needs review » Fixed

Status: Fixed » Closed (fixed)

Automatically closed - issue fixed for 2 weeks with no activity.