- global $session_exists, $session_expire;
- if(! $id || ! $data) {
- return false;
- }
-
- $expire = time() + $session_expire;
- $default_expire = time() + 300;
-
- if($session_exists)
- $r = q("UPDATE `session`
- SET `data` = '%s', `expire` = '%s'
- WHERE `sid` = '%s'",
- dbesc($data), dbesc($expire), dbesc($id));
- else
- $r = q("INSERT INTO `session`
- SET `sid` = '%s', `expire` = '%s', `data` = '%s'",
- dbesc($id), dbesc($default_expire), dbesc($data));
-
- return true;
+ global $session_exists, $session_expire;
+
+ if(! $id || ! $data) {
+ return false;
+ }
+
+ $expire = time() + $session_expire;
+ $default_expire = time() + 300;
+
+ if($session_exists) {
+ $r = q("UPDATE `session`
+ SET `data` = '%s'
+ WHERE `data` != '%s' AND `sid` = '%s'",
+ dbesc($data), dbesc($data), dbesc($id));
+
+ $r = q("UPDATE `session`
+ SET `expire` = '%s'
+ WHERE `expire` != '%s' AND `sid` = '%s'",
+ dbesc($expire), dbesc($expire), dbesc($id));
+ } else
+ $r = q("INSERT INTO `session`
+ SET `sid` = '%s', `expire` = '%s', `data` = '%s'",
+ dbesc($id), dbesc($default_expire), dbesc($data));
+
+ return true;