-
Bug
-
Resolution: Fixed
-
Major
-
3.7.4, 3.8.1, 3.9
-
MOODLE_37_STABLE, MOODLE_38_STABLE, MOODLE_39_STABLE
-
MOODLE_37_STABLE, MOODLE_38_STABLE
-
MDL-67758-master -
The $CFG->wwwroot is necessary to check for good use of the provided Access keys by Airnotifier (the access key should be only used by the site that originally requested it).
Right now, this value is not passed to the Airnotifier public instance so it is very easy to use the same "Access key" for multiple different sites (even if they are not registered).