holm/egroupware
1
1
Fork 0
forked from extern/egroupware
Code Issues Pull Requests Packages Projects Releases Wiki Activity

* Admin/API: remove no longer fully supported method to not "store session-id in cookie", it is the safer default anyway

Browse Source
This commit is contained in:
Ralf Becker 2014-07-18 10:02:51 +00:00
parent a8a5557aa7
commit 9712e625db
3 changed files with 0 additions and 28 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
admin/templates/default/config.tpl
View File

@ -105,16 +105,6 @@
<td colspan="2">&nbsp;<b>{lang_security}</b></td>
</tr>
<tr class="row_on">
<td>{lang_Use_cookies_to_pass_sessionid}:</td>
<td>
<select name="newsettings[usecookies]">
<option value="True"{selected_usecookies_True}>{lang_Yes} - {lang_more_secure}</option>
<option value=""{selected_usecookies_}>{lang_No}</option>
</select>
</td>
</tr>
<tr class="row_off">
<td>{lang_Cookie_path_(allows_multiple_eGW_sessions_with_different_directories,_has_problemes_with_SiteMgr!)}:</td>
<td>

10
etemplate/inc/class.url_widget.inc.php
View File

@ -164,11 +164,6 @@ class url_widget
if ($value)
{
$link = (strpos($value,'://') === false) ? 'http://'.$value : $value;
if (!$GLOBALS['egw_info']['server']['usecookies']) // if session-id is in url, use redirect.php to remove it from referrer
{
$link = $GLOBALS['egw_info']['server']['webserver_url'].'/redirect.php?go='.$link;
if ($link[0] == '/') $link = ($_SERVER['HTTPS'] ? 'https://' : 'http://').$_SERVER['HTTP_HOST'].$link;
}
$cell['size'] = ','.$link.',,,_blank';
}
if (substr($value,0,7) == 'http://')
@ -194,11 +189,6 @@ class url_widget
if ($value)
{
$link = self::phone2link($value);
if (!$GLOBALS['egw_info']['server']['usecookies'] && substr($link,0,4) == 'http') // if session-id is in url, use redirect.php to remove it from referrer
{
$link = $GLOBALS['egw_info']['server']['webserver_url'].'/redirect.php?go='.$link;
if ($link[0] == '/') $link = ($_SERVER['HTTPS'] ? 'https://' : 'http://').$_SERVER['HTTP_HOST'].$link;
}
$cell['size'] = ','.$link.($GLOBALS['egw_info']['server']['call_popup']=='none' ? '' : // 'none' = no target
',,,calling,'.$GLOBALS['egw_info']['server']['call_popup']);
}

8
phpgwapi/js/jsapi/egw_links.js
View File

@ -258,14 +258,6 @@ egw.extend('links', egw.MODULE_GLOBAL, function() {
}
var vars = {};
/* not sure we still need to support that
// add session params if not using cookies
if (!$GLOBALS['egw_info']['server']['usecookies'])
{
$vars['sessionid'] = $GLOBALS['egw']->session->sessionid;
$vars['kp3'] = $GLOBALS['egw']->session->kp3;
$vars['domain'] = $GLOBALS['egw']->session->account_domain;
}*/
// check if the url already contains a query and ensure that vars is an array and all strings are in extravars
var url_othervars = _url.split('?',2);