Changeset 1858 in ExiteCMS for trunk/includes/session_functions.php

Timestamp:

10/17/08 16:40:38 (4 years ago)

Author:

hverton

Message:

rewritten the login/logout code, all code is now located in setuser.php
added a security setting "require SSL for logins"
added a security setting "require login before site access"
fixed small date display issue in several rev. upgrade files
added alternative login methods to the full-screen login

File:

• trunk/includes/session_functions.php (modified) (1 diff)

trunk/includes/session_functions.php

@@ -55 +55 @@
 
 // store the last_url cookie if found
-if (isset($_COOKIE['last_url']) && isURL($_COOKIE['last_url'])) {
+if (isset($_COOKIE['last_url']) && (isURL($_COOKIE['last_url']) || isURL($settings['siteurl'].$_COOKIE['last_url'])) && $_COOKIE['last_url'] != BASEDIR."setuser.php?login=yes") {
     $_SESSION['last_url'] = stripinput($_COOKIE['last_url']);
 }