At the very least improve login implementation and include the login check (to be converted to a function on a security controller called check_access() which will do redirects as needed) on all endpoints including both view and edit endpoints
See the system model portion of the outline for more information
At the very least improve login implementation and include the login check (to be converted to a function on a security controller called check_access() which will do redirects as needed) on all endpoints including both view and edit endpoints
See the system model portion of the outline for more information