From 8eff291cf2fb3656c49e856efdd595c0c7203c73 Mon Sep 17 00:00:00 2001
From: Peter Rotich <peter@osticket.com>
Date: Wed, 25 Jul 2012 12:00:49 -0400
Subject: [PATCH] Remove staff only restriction on ajax controller - access
 control is on entry point (ajax.php) and exposed methods

---
 include/class.ajax.php | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

diff --git a/include/class.ajax.php b/include/class.ajax.php
index 0240d91f8..5bd26a67e 100644
--- a/include/class.ajax.php
+++ b/include/class.ajax.php
@@ -26,11 +26,7 @@ require_once (INCLUDE_DIR.'class.api.php');
  */
 class AjaxController extends ApiController {
     function AjaxController() {
-        # Security checks first
-        # --> It is assumed that all AJAX calls will require a login. And
-        #     for now, since client logins are not yet supported, a staff
-        #     login will be required for AJAX calls.
-        $this->staffOnly();
+    
     }
     function staffOnly() {
         global $thisstaff;
-- 
GitLab