X-Git-Url: https://jasonwoof.com/gitweb/?p=wfpl.git;a=blobdiff_plain;f=session.php;h=bcf23578215b3401f2fe524af5dd4670db2774de;hp=901315770ab44afd73a8d7a85ad0bc2b883a599e;hb=15459c86d0996ab3037b1738a8be6efd378c1258;hpb=2b91af8c3f5c2b6cf3b749c769c5ccbe62890b5e diff --git a/session.php b/session.php index 9013157..bcf2357 100644 --- a/session.php +++ b/session.php @@ -20,7 +20,7 @@ # create table wfpl_sessions (id int unique auto_increment, session_key varchar(16), length int, expires int); # create table wfpl_session_data (id int unique auto_increment, session_id int, name varchar(100), value text); # run this command to install/clear the tables: -# mysql DATABASE_NAME < code/wfpl/examples/session.sql +# mysql DATABASE_NAME < inc/wfpl/examples/session.sql # note: you may need these parameters for mysql: -u USERNAME -p # GLOSSARY @@ -36,15 +36,15 @@ # generate a new random 16-character string function session_generate_key() { $character_set = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789"; - $id = " "; + $id = " "; # PHP 4.2.0 and up seed the random number generator for you. # Lets hope that it seeds with something harder to guess than the clock. - for($i = 0; $i < 16; ++$i) { - $id{$i} = $character_set{mt_rand(0, 61)}; - } + for($i = 0; $i < 16; ++$i) { + $id{$i} = $character_set{mt_rand(0, 61)}; + } - return $id; + return $id; } # track this user with a session cookie (ie a cookie that goes away when the @@ -69,7 +69,7 @@ function session_touch($length = false) { } $expires = time() + $length; - header('Set-Cookie: session_key=' . $GLOBALS['session_key']); + header('Set-Cookie: session_key=' . $GLOBALS['session_key'] . '; Path=/'); db_update('wfpl_sessions', 'expires', $expires, 'where id=%i', $GLOBALS['session_id']); } @@ -157,7 +157,7 @@ function logged_in() { -# return username if a session exists and is authenticated +# return true if a session exists and is authenticated function logged_in_as_admin() { if(!session_exists()) { return false;