From 8c74ba9a3d2373ce262387d82570d2b333c6b546 Mon Sep 17 00:00:00 2001
From: Baptiste <baptiste.rebillard@outlook.fr>
Date: Thu, 27 Oct 2022 17:55:32 +0200
Subject: [PATCH] =?UTF-8?q?la=20s=C3=A9cu=20bordel?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 admin/index.php | 5 -----
 photos.php      | 1 -
 2 files changed, 6 deletions(-)

diff --git a/admin/index.php b/admin/index.php
index 5d7f5c6..a722e1e 100644
--- a/admin/index.php
+++ b/admin/index.php
@@ -11,11 +11,6 @@ phpCAS::client(CAS_VERSION_2_0, "cas.insa-toulouse.fr", 443, 'cas', true);
 // on the CAS server and uncomment the line below
 // phpCAS::setCasServerCACert($cas_server_ca_cert_path);
 
-// For quick testing you can disable SSL validation of the CAS server.
-// THIS SETTING IS NOT RECOMMENDED FOR PRODUCTION.
-// VALIDATING THE CAS SERVER IS CRUCIAL TO THE SECURITY OF THE CAS PROTOCOL!
-phpCAS::setNoCasServerValidation();
-
 // force CAS authentication
 phpCAS::forceAuthentication();
 
diff --git a/photos.php b/photos.php
index da69573..108231d 100644
--- a/photos.php
+++ b/photos.php
@@ -252,7 +252,6 @@ function generatePath($path)
 require_once("phpCAS-1.3.6/CAS.php");
 
 phpCAS::client(CAS_VERSION_2_0, "cas.insa-toulouse.fr", 443, 'cas', true);
-phpCAS::setNoCasServerValidation();
 phpCAS::forceAuthentication();
 if (isset($_REQUEST['logout'])) {
         phpCAS::logout();