extern/egroupware_official
1
0
Fork 0
mirror of https://github.com/EGroupware/egroupware.git synced 2025-01-03 04:29:28 +01:00
Code Issues Packages Projects Releases Wiki Activity

do not set cookies if not using cookies

Browse Source
This commit is contained in:
Miles Lott 2002-08-12 00:57:51 +00:00
parent 57145e6841
commit c60fbfd183
1 changed files with 13 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

22
login.php
View File

@ -67,19 +67,22 @@
switch($GLOBALS['HTTP_GET_VARS']['code']) switch($GLOBALS['HTTP_GET_VARS']['code'])
{ {
case 1: case 1:
$GLOBALS['phpgw_info']['flags']['msgbox_data']['You have been successfully logged out']=True; $GLOBALS['phpgw_info']['flags']['msgbox_data']['You have been successfully logged out'] = True;
break; break;
case 2: case 2:
$GLOBALS['phpgw_info']['flags']['msgbox_data']['Sorry, your login has expired']=False; $GLOBALS['phpgw_info']['flags']['msgbox_data']['Sorry, your login has expired'] = False;
break; break;
case 5: case 5:
$GLOBALS['phpgw_info']['flags']['msgbox_data']['Bad login or password']=False; $GLOBALS['phpgw_info']['flags']['msgbox_data']['Bad login or password'] = False;
break; break;
case 10: case 10:
Setcookie('sessionid'); if($GLOBALS['phpgw_info']['server']['usecookies'])
Setcookie('kp3'); {
Setcookie('domain'); Setcookie('sessionid');
$GLOBALS['phpgw_info']['flags']['msgbox_data']['Your session could not be verified']=False; Setcookie('kp3');
Setcookie('domain');
}
$GLOBALS['phpgw_info']['flags']['msgbox_data']['Your session could not be verified'] = False;
break; break;
} }
} }
@ -114,7 +117,8 @@
# login will be set here if the user logged out and uses a different username with # login will be set here if the user logged out and uses a different username with
# the same SSL-certificate. # the same SSL-certificate.
if (!isset($login)&&isset($sslattributes['Email'])) { if (!isset($login)&&isset($sslattributes['Email']))
{
$login = $sslattributes['Email']; $login = $sslattributes['Email'];
# not checked against the database, but delivered to authentication module # not checked against the database, but delivered to authentication module
$passwd = $HTTP_SERVER_VARS['SSL_CLIENT_S_DN']; $passwd = $HTTP_SERVER_VARS['SSL_CLIENT_S_DN'];
@ -134,7 +138,7 @@
} }
$GLOBALS['sessionid'] = $GLOBALS['phpgw']->session->create($GLOBALS['HTTP_POST_VARS']['login'],$GLOBALS['HTTP_POST_VARS']['passwd'],$GLOBALS['HTTP_POST_VARS']['passwd_type']); $GLOBALS['sessionid'] = $GLOBALS['phpgw']->session->create($GLOBALS['HTTP_POST_VARS']['login'],$GLOBALS['HTTP_POST_VARS']['passwd'],$GLOBALS['HTTP_POST_VARS']['passwd_type']);
if (! isset($GLOBALS['sessionid']) || ! $GLOBALS['sessionid']) if(!isset($GLOBALS['sessionid']) || !$GLOBALS['sessionid'])
{ {
$GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] . '/login.php?code=5'); $GLOBALS['phpgw']->redirect($GLOBALS['phpgw_info']['server']['webserver_url'] . '/login.php?code=5');
} }