public/tt-rss
1
0
Fork 0
mirror of https://git.tt-rss.org/git/tt-rss.git synced 2025-12-13 19:15:56 +00:00
Code Issues Releases Wiki Activity

implement some tweaks to session handling; properly remove session cookie if invalid/login failed

Browse Source
This commit is contained in:
Andrew Dolgov
2013-04-04 15:33:14 +04:00
parent 82d77deb28
commit 9ce7a5546c
5 changed files with 10 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
classes/handler/public.php
View File

@@ -515,7 +515,7 @@ class Handler_Public extends Handler {
$login = db_escape_string($this->link, $_POST["login"]);
$password = $_POST["password"];
$remember_me = $_POST["remember_me"];
/* $remember_me = $_POST["remember_me"];
if ($remember_me) {
session_set_cookie_params(SESSION_COOKIE_LIFETIME);
@@ -523,7 +523,7 @@ class Handler_Public extends Handler {
session_set_cookie_params(0);
}
@session_start();
@session_start(); */
if (authenticate_user($this->link, $login, $password)) {
$_POST["password"] = "";