manuelcillero/suitedesk
manuelcillero/suitedesk
Archived
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Patch for compatibility with Bakery module if it exists

Browse source
This commit is contained in:
Manuel Cillero 2017-07-26 12:28:31 +02:00
parent 2733718e0f
commit 136ce6a70c
1 changed files with 10 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

15
modules/securepages_prevent_hijack/securepages_prevent_hijack.module
View file

@ -22,14 +22,19 @@ function securepages_prevent_hijack_init() {
if ($user->uid > 0 && $page_match && securepages_is_secure() && variable_get('securepages_enable', FALSE)) { if ($user->uid > 0 && $page_match && securepages_is_secure() && variable_get('securepages_enable', FALSE)) {
if (! isset($_COOKIE[SECUREPAGES_SESSID]) || if (! isset($_COOKIE[SECUREPAGES_SESSID]) ||
! drupal_valid_token($_COOKIE[SECUREPAGES_SESSID], 'securepages_prevent_hijack')) { ! drupal_valid_token($_COOKIE[SECUREPAGES_SESSID], 'securepages_prevent_hijack')) {
watchdog('security', $username = $user->name;
t('Session hijack attempt detected for user %user!',
array('%user' => $user->name)));
session_destroy(); session_destroy();
$user = drupal_anonymous_user(); $user = drupal_anonymous_user();
sess_regenerate(); sess_regenerate();
drupal_access_denied(); if (! isset($_COOKIE[CHOCOLATECHIP])) {
watchdog('security',
t('Session hijack attempt detected for user %user!',
array('%user' => $user->name)));
drupal_access_denied();
} else {
# drupal_goto('user', 'destination=' . $_GET['q']);
drupal_goto($_GET['q']);
}
exit(); exit();
} }
} }