diff options
| author | Loui Chang <louipc.ist@gmail.com> | 2008-11-17 17:45:12 +0100 |
|---|---|---|
| committer | Loui Chang <louipc.ist@gmail.com> | 2008-11-25 07:31:08 +0100 |
| commit | 692cc1e9536c8440586cbca0957dbf7d41b65f4c (patch) | |
| tree | f7df59421af4e047bb926891e47225e9d13fe134 /web/lib/acctfuncs.inc | |
| parent | 836c162946370c228525814388622821c7fc0f17 (diff) | |
| download | aur-692cc1e9536c8440586cbca0957dbf7d41b65f4c.tar.gz aur-692cc1e9536c8440586cbca0957dbf7d41b65f4c.tar.xz | |
Make remembered sessions actually save themselves.
Also clean up a notice in index.php
Signed-off-by: Loui Chang <louipc.ist@gmail.com>
Diffstat (limited to 'web/lib/acctfuncs.inc')
| -rw-r--r-- | web/lib/acctfuncs.inc | 14 |
1 files changed, 11 insertions, 3 deletions
diff --git a/web/lib/acctfuncs.inc b/web/lib/acctfuncs.inc index d0b6b0ac..a8492577 100644 --- a/web/lib/acctfuncs.inc +++ b/web/lib/acctfuncs.inc @@ -632,24 +632,32 @@ function try_login() { $q = "INSERT INTO Sessions (UsersID, SessionID, LastUpdateTS)" ." VALUES ( $userID, '" . $new_sid . "', UNIX_TIMESTAMP())"; $result = db_query($q, $dbh); + # Query will fail if $new_sid is not unique - # if ($result) { $logged_in = 1; break; } + $num_tries++; } + if ($logged_in) { # set our SID cookie - if ($_POST['remember_me'] == "on") + if ($_POST['remember_me'] == "on") { # Set cookies for 30 days. $cookie_time = time() + (60 * 60 * 24 * 30); + + # Set session for 30 days. + $q = "UPDATE Sessions SET LastUpdateTS = $cookie_time "; + $q.= "WHERE SessionID = '$new_sid'"; + db_query($q, $dbh); + } else $cookie_time = 0; + setcookie("AURSID", $new_sid, $cookie_time, "/"); -# header("Location: /index.php"); header("Location: " . $_SERVER['PHP_SELF'].'?'.$_SERVER['QUERY_STRING']); $login_error = ""; |