forked from root/threadr.lostcave.ddnss.de
Well that did not work as expected. As expected.
parent
58f97c8d49
commit
1f83e3c731
|
@ -10,7 +10,7 @@ echo "Deployment script for repository \"web-deployment\"
|
|||
=============================================================================="
|
||||
|
||||
rewrite_code %CONTENT_DIR% "\/common\/threadr"
|
||||
rewrite_code %ENFORCE_IP% `cat enforce_ip.template`
|
||||
#rewrite_code %ENFORCE_IP% `cat enforce_ip.template`
|
||||
|
||||
|
||||
echo "==============================================================================
|
||||
|
|
|
@ -1,7 +1,17 @@
|
|||
<?php
|
||||
session_start();
|
||||
//Todo: make this a setting for users that use VPNs/Proxies and seem to jump around the world rather quickly...
|
||||
%ENFORCE_IP%
|
||||
if ($_SESSION['user_ip']!=$_SERVER['REMOTE_ADDR']){
|
||||
// force logout
|
||||
$_SESSION = array();
|
||||
if (ini_get("session.use_cookies")) {
|
||||
$params = session_get_cookie_params();
|
||||
setcookie(session_name(), '', time() - 42000, $params["path"], $params["domain"], $params["secure"], $params["httponly"]);
|
||||
}
|
||||
session_destroy();
|
||||
header("Location: https://lostcave.ddnss.de/common/threadr/login/?error=session");
|
||||
die();
|
||||
}
|
||||
|
||||
$pdo = new PDO('mysql:host=localhost;dbname=web', 'webstuff', 'Schei// auf Pa$$w0rter!');
|
||||
$statement = $pdo->prepare('SELECT name FROM users WHERE id = :user_id;'); // to be replaced with optional user name off the user data table
|
||||
|
|
Loading…
Reference in New Issue