The validation link in mail is not secured
|Assignee:||Battaglia Marc||% Done:|
The validation link in mail is not secured:
The link allow a non authenticated user having the link to validate or reject an order (this is the goal).
But the link is built with the id of the order (known by everyone: clien, third party and provider) and the id of the validator,
if a user knows the id of one of the validators, he can validates his own order.