From 21e42e5fb08555f71fd6aefa34be80ddf43aef06 Mon Sep 17 00:00:00 2001 From: Andrew Dolgov Date: Wed, 4 Apr 2012 08:37:34 +0400 Subject: [PATCH] fix csrf_token for single user mode --- include/functions.php | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) diff --git a/include/functions.php b/include/functions.php index 6bc3ca4f9..27c24f8ed 100644 --- a/include/functions.php +++ b/include/functions.php @@ -838,7 +838,10 @@ $_SESSION["uid"] = 1; $_SESSION["name"] = "admin"; $_SESSION["access_level"] = 10; - $_SESSION["csrf_token"] = sha1(uniqid(rand(), true)); + + if (!$_SESSION["csrf_token"]) { + $_SESSION["csrf_token"] = sha1(uniqid(rand(), true)); + } $_SESSION["ip_address"] = $_SERVER["REMOTE_ADDR"];