/****************************************************************/
// $Id$
-$page = 'login';
$_user_location = 'public';
define('AT_INCLUDE_PATH', 'include/');
require (AT_INCLUDE_PATH.'vitals.inc.php');
-
-if (isset($_POST['cancel'])) {
- header('Location: about.php');
- exit;
-}
-
if (isset($_GET['course'])) {
$_GET['course'] = intval($_GET['course']);
} else {
}
if (!isset($_SESSION['token']) || !$_SESSION['token']) {
- $_SESSION['token'] = md5(mt_rand());
+ $_SESSION['token'] = sha1(mt_rand());
}
if (isset($cookie_login, $cookie_pass) && !isset($_POST['submit'])) {
$used_cookie = false;
}
-if (isset($this_login, $this_password) && !isset($_SESSION['token'])) {
+if (isset($this_login, $this_password) && !isset($_SESSION['session_test'])) {
$msg->addError('SESSION_COOKIES');
} else if (isset($this_login, $this_password)) {
if (version_compare(PHP_VERSION, '5.1.0', '>=')) {
}
}
+$_SESSION['session_test'] = TRUE;
+
if (isset($_SESSION['member_id'])) {
$sql = "DELETE FROM ".TABLE_PREFIX."users_online WHERE member_id=$_SESSION[member_id]";
$result = @mysql_query($sql, $db);