HomePhabricator

SECURITY: Don't treat non-existent user as "any anon"

Authored by Mattflaschen-WMF on Apr 10 2017, 6:50 PM.

Description

SECURITY: Don't treat non-existent user as "any anon"

Due to an issue with how the username was checked, it would show
all topics created by any anon when a non-existent user was requested.

Bug: T162621
Change-Id: I243712cedb75fc9c51dc45404eed65bf2d42c111
(cherry picked from commit bab6c698ebb4362d4f928e566a7b9cb7e198abe6)