From 878aae8025eeb50e4f89097a4c20e64df8276465 Mon Sep 17 00:00:00 2001
From: Miles Lott <milosch@alumni.egroupware.org>
Date: Mon, 27 Aug 2001 09:40:16 +0000
Subject: [PATCH] Don't check headers, simply verify user first, server second.

---
 xmlrpc.php | 14 ++++----------
 1 file changed, 4 insertions(+), 10 deletions(-)

diff --git a/xmlrpc.php b/xmlrpc.php
index 48174db5af..207ef0b583 100644
--- a/xmlrpc.php
+++ b/xmlrpc.php
@@ -34,19 +34,13 @@
 		$auth = base64_decode(trim($tmp));
 		list($sessionid,$kp3) = split(':',$auth);
 
-		if($HTTP_SERVER_VARS['HTTP_X_PHPGW_SERVER'])
+		if($GLOBALS['phpgw']->session->verify($sessionid,$kp3))
 		{
-			if($GLOBALS['phpgw']->session->verify_server($sessionid,$kp3))
-			{
-				$server->authed = True;
-			}
+			$server->authed = True;
 		}
-		else
+		elseif($GLOBALS['phpgw']->session->verify_server($sessionid,$kp3))
 		{
-			if($GLOBALS['phpgw']->session->verify($sessionid,$kp3))
-			{
-				$server->authed = True;
-			}
+			$server->authed = True;
 		}
 	}