Allow acces to /front/initpassword.php page without session

Author: AdrienClairembault

phpunit/functional/Glpi/Http/FirewallTest.php

@@ -76,6 +76,7 @@ public function testComputeFallbackStrategy(): void
                     'lostpassword.php' => '',
                     'planning.php' => '',
                     'tracking.injector.php' => '',
+                    'initpassword.php' => '',
                     'updatepassword.php' => '',
                 ],
                 'marketplace' => [
@@ -191,6 +192,7 @@ public function testComputeFallbackStrategy(): void
                 '/front/locale.php',
                 '/front/login.php',
                 '/front/logout.php',
+                '/front/initpassword.php',
                 '/front/lostpassword.php',
                 '/front/updatepassword.php',
             ];

src/Glpi/Http/Firewall.php

@@ -231,6 +231,7 @@ private function computeFallbackStrategyForCore(string $path): string
             '/front/locale.php' => self::STRATEGY_NO_CHECK, // locales must be accessible also on public pages
             '/front/login.php' => self::STRATEGY_NO_CHECK,
             '/front/logout.php' => self::STRATEGY_NO_CHECK,
+            '/front/initpassword.php' => self::STRATEGY_NO_CHECK,
             '/front/lostpassword.php' => self::STRATEGY_NO_CHECK,
             '/front/updatepassword.php' => self::STRATEGY_NO_CHECK,
             '/install/' => self::STRATEGY_NO_CHECK, // No check during install/update