namespace Friendica;
use Friendica\Core\L10n;
+use Friendica\Core\Logger;
use Friendica\Core\System;
/**
*/
public static function getFormSecurityToken($typename = '')
{
- $a = get_app();
+ $a = \get_app();
$timestamp = time();
$sec_hash = hash('whirlpool', $a->user['guid'] . $a->user['prvkey'] . session_id() . $timestamp . $typename);
$max_livetime = 10800; // 3 hours
- $a = get_app();
+ $a = \get_app();
$x = explode('.', $hash);
if (time() > (IntVal($x[0]) + $max_livetime)) {
public static function checkFormSecurityTokenRedirectOnError($err_redirect, $typename = '', $formname = 'form_security_token')
{
if (!self::checkFormSecurityToken($typename, $formname)) {
- $a = get_app();
- logger('checkFormSecurityToken failed: user ' . $a->user['guid'] . ' - form element ' . $typename);
- logger('checkFormSecurityToken failed: _REQUEST data: ' . print_r($_REQUEST, true), LOGGER_DATA);
+ $a = \get_app();
+ Logger::log('checkFormSecurityToken failed: user ' . $a->user['guid'] . ' - form element ' . $typename);
+ Logger::log('checkFormSecurityToken failed: _REQUEST data: ' . print_r($_REQUEST, true), Logger::DATA);
notice(self::getFormSecurityStandardErrorMessage());
$a->internalRedirect($err_redirect);
}
public static function checkFormSecurityTokenForbiddenOnError($typename = '', $formname = 'form_security_token')
{
if (!self::checkFormSecurityToken($typename, $formname)) {
- $a = get_app();
- logger('checkFormSecurityToken failed: user ' . $a->user['guid'] . ' - form element ' . $typename);
- logger('checkFormSecurityToken failed: _REQUEST data: ' . print_r($_REQUEST, true), LOGGER_DATA);
- header('HTTP/1.1 403 Forbidden');
- killme();
+ $a = \get_app();
+ Logger::log('checkFormSecurityToken failed: user ' . $a->user['guid'] . ' - form element ' . $typename);
+ Logger::log('checkFormSecurityToken failed: _REQUEST data: ' . print_r($_REQUEST, true), Logger::DATA);
+
+ System::httpExit(403);
}
}
}
projects / friendica.git / blobdiff