Security: added additional check in inscription.php to avoid loading page if registration not authorized by admin - refs idat

main/auth/inscription.php

@@ -17,6 +17,10 @@ require_once '../inc/global.inc.php';
 require_once api_get_path(CONFIGURATION_PATH).'profile.conf.php';
 require_once api_get_path(LIBRARY_PATH).'mail.lib.inc.php';
 
+if (api_get_setting('allow_registration') === 'false') {
+    api_not_allowed(true);
+}
+
 if (!empty($_SESSION['user_language_choice'])) {
     $user_selected_language = $_SESSION['user_language_choice'];
 } elseif (!empty($_SESSION['_user']['language'])) {
@@ -551,4 +555,4 @@ if ($form->validate()) {
         $form->display();
     }
 }
-Display :: display_footer();
+Display :: display_footer();