Skip to content

Commit

Permalink
Merge branch 'master' of github.com:jomweb/CakeImpersonate
Browse files Browse the repository at this point in the history
  • Loading branch information
@challgren
challgren committed Jan 4, 2019
2 parents c59a4b6 + e4edac3 commit c8687b8
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@
A component that stores the current authentication session and creates new session for impersonating Users. User can revert back to original authentication sessions without the need to re-login.

### Warning
Always double check that you cannot "spoof" other users in the controller actions. To prevent hijacking of users accounts that the current authenticated User shouldn't/wouldn't have normal access to. This Plugin does circumvent default authentication mechanisms.
Always double check that an attacker cannot "spoof" other Users in the controller actions. To prevent hijacking of users accounts that the current request shouldn't/wouldn't have normal access to. This Plugin does circumvent default authentication mechanisms.

# Requirement
1. CakePHP 3.7 and above.
Expand All @@ -34,7 +34,7 @@ $this->loadComponent('CakeImpersonate.Impersonate');
# Usage
#### Impersonate user
```php
$this->Impersonate->login($user_id);
$this->Impersonate->login($userIdToImpersonate);
```

#### Check current user is impersonated
Expand Down

0 comments on commit c8687b8

Please sign in to comment.