Cyclone-Team/e949
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Code cleanup and some fixes

Browse Source
This commit is contained in:
Shr3dd3r
2023-08-30 04:41:13 +03:00
parent 41ddbcab9e
commit 074ce120e9
6 changed files with 43 additions and 32 deletions
Download Patch File Download Diff File Expand all files Collapse all files

25
api/_auth.php
View File

@ -4,6 +4,18 @@ require_once("_db.php"); //("api/_db.php");
// End currently active session
function EndSession () {
session_unset();
session_destroy();
if (isset($_COOKIE["PHPSESSID"])) {
unset($_COOKIE["PHPSESSID"]);
setcookie("PHPSESSID", "", time() - 3600, "/");
}
}
//session_start();
// This ^ should be placed at login stage
@ -15,23 +27,14 @@ if (isset($_SESSION["userid"])) {
$s->bind_param("s", $_SESSION["userid"]);
$s->execute();
if (!(bool)$s->get_result()->fetch_assoc()) { // If not, then destroy session
session_unset();
session_destroy();
EndSession();
echo "user id does not exist";
die("user id used in session does not exist");
}
$LOGGED_IN = true;
} else {
// ATTENTION: idk will this work, but this can be theoretically unsafe or cause fault
if (session_status()) {
session_unset();
session_destroy();
}
if (isset($_COOKIE["PHPSESSID"])) {
unset($_COOKIE["PHPSESSID"]);
setcookie("PHPSESSID", "", time() - 3600, "/");
EndSession();
}
}