valvin
/
ttrss
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

if empty session is autostarted because of a cookie, immediately destroy it

This commit is contained in:
Andrew Dolgov 2018-10-15 14:53:35 +03:00
parent 7d53c2b501
commit 74736fce0f
1 changed files with 4 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
include/sessions.php
View File

@ -160,5 +160,9 @@
if (!defined('NO_SESSION_AUTOSTART')) { if (!defined('NO_SESSION_AUTOSTART')) {
if (isset($_COOKIE[session_name()])) { if (isset($_COOKIE[session_name()])) {
@session_start(); @session_start();
if (!$_SESSION['uid']) {
logout_user();
}
} }
} }