phpBB3 allows the specification of a redirection URL during login via the redirect parameter.
Are you saying that a "registered users only" gallery in CPG1.4.20 will redirect someone back to the specific page they were requesting if a user is not logged in?
If it does, do other bridged messageboards also achieve this also?
Current situation - from CPG bridged:
phpBB3's own behaviour:
In the phpBB3.x bridge file, phpbb3.inc.php, there's a section of code:
function login_page()
{
global $CONFIG;
$redirect = urlencode($CONFIG['site_url']);
$this->redirect("/ucp.php?mode=login&redirect=$redirect");
}
In the SMF2.x bridge file, there's the code:
function login_page()
{
global $CONFIG;
// silly workaround for SMF's redirect check...
$_SESSION['old_url'] = $CONFIG['site_url'] . '?board=redirect';
$this->redirect('/index.php?action=login');
}
Doing a quick grep suggests that "site_url" is derived from database's "_config" table, specifically the "ecards_more_pic_target" tuple. This appears to be the fully qualified location of the gallery.
QED The Coppermine bridge, not phpBB or SMF, seems to be redirecting people back to the top level page.
You may ask why I'm lodging this as a feature request rather than doing it myself - I'm a sysadmin by profession, not a programmer. So I'm good at tracking down things - but I'm sure there's people far more qualified than I to edit the code, and if they do edit the code, know the consequences of doing so.
Ie. There is a potential issue where a person requests a page that performs an administrative/data-altering function that shouldn't be performed without a specific confirmation (As per discussion in blog here
http://www.phpbb.com/blog/2009/01/14/fighting-csrf/ )