summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorINOPIAE <inopiae@cacert.org>2014-01-20 18:31:37 +0100
committerINOPIAE <inopiae@cacert.org>2014-01-20 18:31:37 +0100
commit8c85e31023498508f9c20048085b12a337cdd195 (patch)
tree905d839ad69140f7cd49a430a9889a7647e5a2ed
parentea25e2de0ab27fa1557bff99eaaa81840f63a35a (diff)
downloadcacert-devel-8c85e31023498508f9c20048085b12a337cdd195.tar.gz
cacert-devel-8c85e31023498508f9c20048085b12a337cdd195.tar.xz
cacert-devel-8c85e31023498508f9c20048085b12a337cdd195.zip
bug 1138: added SE log for secret questions & answers
-rw-r--r--pages/account/43.php11
1 files changed, 8 insertions, 3 deletions
diff --git a/pages/account/43.php b/pages/account/43.php
index 98f6356..1bbe9aa 100644
--- a/pages/account/43.php
+++ b/pages/account/43.php
@@ -328,7 +328,7 @@ if(intval($_REQUEST['userid']) > 0) {
<?
// This is intensionally a $_GET for audit purposes. DO NOT CHANGE!!!
if(array_key_exists('showlostpw',$_GET) && $_GET['showlostpw'] == "yes" && $ticketvalidation==true) {
- write_se_log($uid, $adminid, 'AD view lost password information', $ticketno);
+ write_se_log($userid, $_SESSION['profile']['id'], 'AD view lost password information', $ticketno);
?>
<tr>
<td class="DataTD"><?=_("Lost Password")?> - Q1:</td>
@@ -377,10 +377,15 @@ if(intval($_REQUEST['userid']) > 0) {
<td class="DataTD" colspan="2"><?=_('No access granted. Ticket number is missing')?></td>
</tr>
<tr>
- <td class="DataTD" colspan="2"><a href="account.php?id=43&amp;userid=<?=$row['id']?>&amp;showlostpw=yes"><?=_("Show Lost Password Details")?></a></td>
+ <td class="DataTD" colspan="2"><a href="account.php?id=43&amp;userid=<?=$row['id']?>&amp;showlostpw=yes&amp;ticketno=<?=$ticketno?>"><?=_("Show Lost Password Details")?></a></td>
</tr>
<?
- }
+ } else {
+ ?>
+ <tr>
+ <td class="DataTD" colspan="2"><a href="account.php?id=43&amp;userid=<?=$row['id']?>&amp;showlostpw=yes&amp;ticketno=<?=$ticketno?>"><?=_("Show Lost Password Details")?></a></td>
+ </tr>
+ <? }
// list assurance points
?>