From b8f45d20fdb89fa15d94a86705569ac824f7a1d9 Mon Sep 17 00:00:00 2001
From: Andrew Nicols <andrew@nicols.co.uk>
Date: Wed, 20 Sep 2023 13:59:57 +0800
Subject: [PATCH] MDL-79422 ajax: Allow no-login WS calls to fetch after a
 failure

---
 lib/ajax/service.php | 20 ++++++++++++++++++--
 1 file changed, 18 insertions(+), 2 deletions(-)

diff --git a/lib/ajax/service.php b/lib/ajax/service.php
index 977b5e4a4b8..e2acda30a9b 100644
--- a/lib/ajax/service.php
+++ b/lib/ajax/service.php
@@ -80,10 +80,26 @@ foreach ($requests as $request) {
 
     $response = external_api::call_external_function($methodname, $args, true);
     $responses[$index] = $response;
+
     if ($response['error']) {
-        // Do not process the remaining requests.
         $haserror = true;
-        break;
+        if (!NO_MOODLE_COOKIES) {
+            // If there was an error, and this HTTP request includes a Moodle cookie (and therefore a login), reject all
+            // subsequent changes.
+            //
+            // The reason for this is that an earlier step may be performing a dependant action. Consider the following:
+            // 1) Backup a thing
+            // 2) Reset the thing to its initial state
+            // 3) Restore the thing from the backup made in step 1.
+            //
+            // In the above example you do not want steps 2 and 3 to happen if step 1 fails.
+            // Do not process the remaining requests.
+
+            // If the request came through service-nologin.php which does not allow any kind of login,
+            // then it is not possible to make changes to the DB, session, site, etc.
+            // For all other cases, we *MUST* stop processing subsequent requests.
+            break;
+        }
     }
 }