-<?
+<?php
// Original from http://www.daniweb.com/code/snippet43.html
require_once "config.php";
require_once "db.php";
- $session_expire = 3600; //seconds
+ $session_expire = SESSION_EXPIRE_TIME; //seconds
+ $session_name = (!defined('TTRSS_SESSION_NAME')) ? "ttrss_sid" : TTRSS_SESSION_NAME;
ini_set("session.gc_probability", 50);
- ini_set("session.name", "ttrss_sid");
+ ini_set("session.name", $session_name);
+ ini_set("session.use_only_cookies", true);
+ ini_set("session.gc_maxlifetime", SESSION_EXPIRE_TIME);
function open ($s, $n) {
global $session_connection,$session_read;
- $ip_address = $_SERVER["REMOTE_ADDR"];
-
- if (SESSION_CHECK_ADDRESS) {
- $address_check_qpart = " AND ip_address = '$ip_address'";
- }
-
$query = "SELECT data FROM ttrss_sessions WHERE id='$id' $address_check_qpart";
$res = db_query($session_connection, $query);
$data = db_escape_string(base64_encode($data), $session_connection);
- $ip_address = $_SERVER["REMOTE_ADDR"];
-
- if (SESSION_CHECK_ADDRESS) {
- $address_check_qpart = " AND ip_address = '$ip_address'";
- }
-
if ($session_read) {
$query = "UPDATE ttrss_sessions SET data='$data',
expire='$expire' WHERE id='$id' $address_check_qpart";
} else {
- $query = "INSERT INTO ttrss_sessions (id, data, expire, ip_address)
- VALUES ('$id', '$data', '$expire', '$ip_address')";
+ $query = "INSERT INTO ttrss_sessions (id, data, expire)
+ VALUES ('$id', '$data', '$expire')";
}
db_query($session_connection, $query);
global $session_connection;
- $ip_address = $_SERVER["REMOTE_ADDR"];
-
- if (SESSION_CHECK_ADDRESS) {
- $address_check_qpart = " AND ip_address = '$ip_address'";
- }
-
$query = "DELETE FROM ttrss_sessions WHERE id = '$id' $address_check_qpart";
db_query($session_connection, $query);
}
if (DATABASE_BACKED_SESSIONS) {
- session_set_save_handler ("open", "close", "read", "write", "destroy", "gc");
+ session_set_save_handler("open", "close", "read", "write", "destroy", "gc");
}
-
+
+// session_set_cookie_params(SESSION_COOKIE_LIFETIME_REMEMBER);
+
session_start();
?>