add hide_change_password session variable

This commit is contained in:
Andrew Dolgov 2012-08-16 15:58:13 +04:00
parent 238d594e6b
commit 1e666f0aeb
3 changed files with 3 additions and 1 deletions

View File

@ -31,6 +31,7 @@ class Auth_Remote extends Auth_Base {
$_SESSION["fake_password"] = "******";
$_SESSION["hide_hello"] = true;
$_SESSION["hide_logout"] = true;
$_SESSION["hide_change_password"] = true;
// LemonLDAP can send user informations via HTTP HEADER
if (defined('AUTH_AUTO_CREATE') && AUTH_AUTO_CREATE){

View File

@ -214,7 +214,7 @@ class Pref_Prefs extends Protected_Handler {
print "</form>";
if (!SINGLE_USER_MODE && !$_SESSION["hide_logout"]) {
if (!SINGLE_USER_MODE && !$_SESSION["hide_change_password"]) {
$result = db_query($this->link, "SELECT id FROM ttrss_users
WHERE id = ".$_SESSION["uid"]." AND pwd_hash

View File

@ -734,6 +734,7 @@
$_SESSION["hide_hello"] = true;
$_SESSION["hide_logout"] = true;
$_SESSION["hide_change_password"] = true;
if (!$_SESSION["csrf_token"]) {
$_SESSION["csrf_token"] = sha1(uniqid(rand(), true));