From 3192fb43bc18263d000fa985c4a469630fe1da74 Mon Sep 17 00:00:00 2001 From: Andrew Dolgov Date: Fri, 30 Jan 2015 13:14:19 +0300 Subject: [PATCH] do not invalidate session when version_static and user agent changes --- include/sessions.php | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/include/sessions.php b/include/sessions.php index 66214afe..12925a51 100644 --- a/include/sessions.php +++ b/include/sessions.php @@ -39,7 +39,7 @@ function validate_session() { if (SINGLE_USER_MODE) return true; - if (VERSION_STATIC != $_SESSION["version"]) return false; + //if (VERSION_STATIC != $_SESSION["version"]) return false; $check_ip = $_SESSION['ip_address']; @@ -68,11 +68,11 @@ return false; } - if (sha1($_SERVER['HTTP_USER_AGENT']) != $_SESSION["user_agent"]) { + /* if (sha1($_SERVER['HTTP_USER_AGENT']) != $_SESSION["user_agent"]) { $_SESSION["login_error_msg"] = __("Session failed to validate (user agent changed)"); return false; - } + } */ if ($_SESSION["uid"]) { $result = Db::get()->query( -- 2.39.5