From cf0a60d27c4bed6a32cfaf4578f9a6ae3f19f43b Mon Sep 17 00:00:00 2001 From: BodgeMaster <> Date: Sat, 7 Mar 2020 21:09:48 +0100 Subject: [PATCH] moved logout mechanism to a variable --- threadr/logout/index.php | 7 +------ variable_grabbler.pass2.json | 4 +++- 2 files changed, 4 insertions(+), 7 deletions(-) diff --git a/threadr/logout/index.php b/threadr/logout/index.php index 71bb197..0fcd8fe 100644 --- a/threadr/logout/index.php +++ b/threadr/logout/index.php @@ -1,11 +1,6 @@ diff --git a/variable_grabbler.pass2.json b/variable_grabbler.pass2.json index 9aad220..bbc751e 100644 --- a/variable_grabbler.pass2.json +++ b/variable_grabbler.pass2.json @@ -1,5 +1,7 @@ { "CONTENT_DIR":"/common/threadr", "NO_CHEAP_SESSION_STEALING":"if (isset($_SESSION['user_id'])) {if ($_SESSION['user_ip']!=$_SERVER['REMOTE_ADDR'] || $_SESSION['user_http_user_agent']!=$_SERVER['HTTP_USER_AGENT']){ $_SESSION = array(); if (ini_get(\"session.use_cookies\")){ $params = session_get_cookie_params(); setcookie(session_name(), '', time() - 42000, $params[\"path\"], $params[\"domain\"], $params[\"secure\"], $params[\"httponly\"]); } session_destroy(); header(\"Location: https://lostcave.ddnss.de/common/threadr/login/?error=session\"); die();}}", -"PLEAZE_NO_CACHE":"header('Cache-Control: no-cache, no-store, must-revalidate');header('Pragma: no-cache');header('Expires: 0');" +"SET_LOGIN_VARIABLE":"if (isset($_SESSION['user_id'])) { $login = true; } else { $login = false; }", +"PLEAZE_NO_CACHE":"header('Cache-Control: no-cache, no-store, must-revalidate');header('Pragma: no-cache');header('Expires: 0');", +"FORCE_LOGOUT":"$_SESSION = array(); if (ini_get('session.use_cookies')) { $params = session_get_cookie_params(); setcookie(session_name(), '', time() - 42000, $params['path'], $params['domain'], $params['secure'], $params['httponly']);} session_destroy();" }