Path admin/controller two files contain variable $ignore
in the master branch in both login.php
and permission.php
<?php
class ControllerStartupLogin extends Controller {
public function index() {
$route = isset($this->request->get['route']) ? $this->request->get['route'] : '';
$ignore = array(
'common/login',
'common/forgotten',
'common/reset',
'aditya/product_low_quantity'
);
// User
$this->registry->set('user', new Cart\User($this->registry));
if (!$this->user->isLogged() && !in_array($route, $ignore)) {
return new Action('common/login');
}
if (isset($this->request->get['route'])) {
$ignore = array(
'common/login',
'common/logout',
'common/forgotten',
'common/reset',
'error/not_found',
'error/permission',
'aditya/product_low_quantity'
);
if (!in_array($route, $ignore) && (!isset($this->request->get['user_token']) || !isset($this->session->data['user_token']) || ($this->request->get['user_token'] != $this->session->data['user_token']))) {
return new Action('common/login');
}
} else {
if (!isset($this->request->get['user_token']) || !isset($this->session->data['user_token']) || ($this->request->get['user_token'] != $this->session->data['user_token'])) {
return new Action('common/login');
}
}
}
}
<?php
class ControllerStartupPermission extends Controller {
public function index() {
if (isset($this->request->get['route'])) {
$route = '';
$part = explode('/', $this->request->get['route']);
if (isset($part[0])) {
$route .= $part[0];
}
if (isset($part[1])) {
$route .= '/' . $part[1];
}
// If a 3rd part is found we need to check if its under one of the extension folders.
$extension = array(
'extension/advertise',
'extension/dashboard',
'extension/analytics',
'extension/captcha',
'extension/extension',
'extension/feed',
'extension/fraud',
'extension/module',
'extension/payment',
'extension/shipping',
'extension/theme',
'extension/total',
'extension/report',
'extension/openbay'
);
if (isset($part[2]) && in_array($route, $extension)) {
$route .= '/' . $part[2];
}
// We want to ingore some pages from having its permission checked.
$ignore = array(
'common/dashboard',
'common/login',
'common/logout',
'common/forgotten',
'common/reset',
'error/not_found',
'error/permission',
'aditya/product_low_quantity'
);
if (!in_array($route, $ignore) && !$this->user->hasPermission('access', $route)) {
return new Action('error/permission');
}
}
}
}
After that run command
curl “https://yourdomain.in/administer/?route=aditya/myurl”
if curl not installed, please install
$ sudo apt update
$ sudo apt install curl
$ curl