After upgrading to 1.4, Live Plugin embeded as a widget causes user to be redirected to Piwik login screen
|Reported by:||jpasquier||Owned by:||matt|
|Priority:||normal||Milestone:||1.5 - Piwik 1.5|
I have embeded the Live Plugin as a widget (iframe) into an external website.
Since I have updated to the 1.4 version of Piwik, whenever a user enter on the page where the widget is embeded, he is redirected to the Piwik login screen with en error message "you cannot access this resource, a 'view' permission on site XX is required".
It seems that the problem comes from the controller of the Live plugin which makes calls to Piwik_API and Piwik_Live_API without having authenticated the user.
Here is a patch that ensures that the authentication token is used to authenticate user before starting to use the API.