Back to limesurvey.org

Welcome to the LimeSurvey Community Forum

Ask the community, share ideas, and connect with other LimeSurvey users!

Is possible to create a public action non protected by login

  • LaCaraB
  • LaCaraB's Avatar Topic Author
  • Offline
  • New Member
  • New Member
More
5 years 5 months ago #186471 by LaCaraB
Is possible to create a public action non protected by login was created by LaCaraB
I'm implementing a plugin and I need to process a POST parameter generated by a 3rd party service in a view.

I have 2 alternatives:

- Process it in the authentication view.

Problem: CSRF issues since this view request a CSRF Token that the IdP ignores. Disable this check on the authentication login is not possible due security implications.


- Process it in a public view.

Problem: Right now I don't know how to create at the plugin an action where non logged users can access without being redirected to login view.

Can anyone share how create a such public action?
The topic has been locked.
  • gabrieljenik
  • gabrieljenik's Avatar
  • Offline
  • Official LimeSurvey Partner
  • Official LimeSurvey Partner
More
5 years 5 months ago #186473 by gabrieljenik
Replied by gabrieljenik on topic Is possible to create a public action non protected by login
Hi,

I believe the unsecureRequest event could fit what you need, but to be honest, I don't remember an example of usage...
Solutions, code and workarounds presented in these forums are given without any warranty, implied or otherwise.

Checkout our Reporting Solutions and our plugin shop at www.encuesta.biz .

[img
The topic has been locked.
  • DenisChenu
  • DenisChenu's Avatar
  • Offline
  • LimeSurvey Community Team & Official Partner
  • LimeSurvey Community Team & Official Partner
More
5 years 5 months ago #186478 by DenisChenu
Replied by DenisChenu on topic Is possible to create a public action non protected by login
I use www.limesurvey.org/manual/NewUnsecureRequest to extend remote control.

For redirection : code sample : gitlab.com/SondagesPro/ExportAndStats/qu...AndStat.php#L446-449
Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member. - Professional support - Plugins, theme and development .
I don't answer to private message.
The topic has been locked.
Moderators: holchtpartner

Lime-years ahead

Online-surveys for every purse and purpose

Pricing & Plans
Get started

Legal

About Us

Open Source