Security Assist Issue
Applied security by group but I can enter the page URL without login in and the page displays w/o error.
The top lines on the page are:
<?php
if (!isset($_SESSION)) {
session_start();
}
?><?php require_once( "../../WA_SecurityAssist/Helper_PHP.php" ); ?>
<?php
if (!WA_Auth_RulePasses("Pending Partner")){
WA_Auth_RestrictAccess("AccessDenied.php");
}
?>
<!DOCTYPE
This group looks for level 3 and above, but is passing without a login when the session variable is null?