From bf1aa3df167e5dcaa47532c925c70e61748278a1 Mon Sep 17 00:00:00 2001
From: Thomas Steur <thomas.steur@gmail.com>
Date: Wed, 29 Jan 2014 15:48:40 +0100
Subject: [PATCH] after downloading the latest version the user has no longer
 superuser access as the logic tries to authenticate against DB and not
 config. At this point the database update is not run yet. Anyway, we do not
 really need superuser permission for this.

---
 plugins/CoreUpdater/Controller.php | 3 ---
 1 file changed, 3 deletions(-)

diff --git a/plugins/CoreUpdater/Controller.php b/plugins/CoreUpdater/Controller.php
index a9f2a9af50..e91c5f3a3a 100644
--- a/plugins/CoreUpdater/Controller.php
+++ b/plugins/CoreUpdater/Controller.php
@@ -110,9 +110,6 @@ class Controller extends \Piwik\Plugin\Controller
 
     public function oneClickResults()
     {
-        Request::reloadAuthUsingTokenAuth($_POST);
-        Piwik::checkUserHasSuperUserAccess();
-
         $view = new View('@CoreUpdater/oneClickResults');
         $view->coreError = Common::getRequestVar('error', '', 'string', $_POST);
         $view->feedbackMessages = safe_unserialize(Common::unsanitizeInputValue(Common::getRequestVar('messages', '', 'string', $_POST)));
-- 
GitLab