diff options
author | Callan Barrett <wizzomafizzo@gmail.com> | 2008-01-04 06:26:47 +0900 |
---|---|---|
committer | Dan McGee <dan@archlinux.org> | 2008-01-20 00:21:19 -0600 |
commit | bf5c28cf2260df822efa72095af69cc119170a3e (patch) | |
tree | 0129893886742cc6bca2f4b11ce9eb57e23f640e /web/template | |
parent | 0e4b25211bc2d9629f0f848ea25a4c2fbcbfe339 (diff) | |
download | aurweb-bf5c28cf2260df822efa72095af69cc119170a3e.tar.xz |
Fix bug with botched AURSID values
In the check_sid function in aur.inc the condition for expiring the
cookie and redirecting to hacker.php could never be met and instead
the user would be given blank login instead of being considered logged
out, now fixed. This also means we no longer need either hacker.php or
timeout.php at all.
Also, this bug seems to be present in the AUR version running on
aur.archlinux.org.
Signed-off-by: Callan Barrett <wizzomafizzo@gmail.com>
Diffstat (limited to 'web/template')
-rw-r--r-- | web/template/header.php | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/web/template/header.php b/web/template/header.php index 5230dc5..440cb24 100644 --- a/web/template/header.php +++ b/web/template/header.php @@ -68,7 +68,10 @@ foreach ($SUPPORTED_LANGS as $lang => $lang_name) { <br /> <div style="text-align: right; padding-right: 10px"> <?php -if (!isset($_COOKIE["AURSID"])) { +if (isset($_COOKIE["AURSID"])) { + print __("Logged-in as: %h%s%h", + array("<b>", username_from_sid($_COOKIE["AURSID"]), "</b>")); +} else { if ($login_error) { print "<span class='error'>" . $login_error . "</span><br />\n"; } @@ -81,9 +84,6 @@ if (!isset($_COOKIE["AURSID"])) { <input type='submit' class='button' value='<?php print __("Login"); ?>'> </form> <?php -} else { - print __("Logged-in as: %h%s%h", - array("<b>", username_from_sid($_COOKIE["AURSID"]), "</b>")); } ?> </div> |