X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;ds=sidebyside;f=inc%2Fsession.php;h=8d8d5b7cf97d906ad1ce0461d058eb51234e7b47;hb=8ffce31d9ae39991adf913512d8f5db24fda0b2a;hp=1d5a04c60b7839f2dcd2527aef3be31b6547e3fd;hpb=006cb8ab88a788079bbf92a15b8f8da8f4b9e94c;p=mailer.git

diff --git a/inc/session.php b/inc/session.php
index 1d5a04c60b..8d8d5b7cf9 100644
--- a/inc/session.php
+++ b/inc/session.php
@@ -1,7 +1,7 @@
 <?php
 /************************************************************************
- * MXChange v0.2.1                                    Start: 09/16/2004 *
- * ===============                              Last change: 11/23/2004 *
+ * Mailer v0.2.1-FINAL                                Start: 09/16/2004 *
+ * ===================                          Last change: 11/23/2004 *
  *                                                                      *
  * -------------------------------------------------------------------- *
  * File              : session.php                                      *
@@ -10,9 +10,14 @@
  * -------------------------------------------------------------------- *
  * Kurzbeschreibung  : Sitzungs-Management                              *
  * -------------------------------------------------------------------- *
- *                                                                      *
+ * $Revision::                                                        $ *
+ * $Date::                                                            $ *
+ * $Tag:: 0.2.1-FINAL                                                 $ *
+ * $Author::                                                          $ *
+ * Needs to be in all Files and every File needs "svn propset           *
+ * svn:keywords Date Revision" (autoprobset!) at least!!!!!!            *
  * -------------------------------------------------------------------- *
- * Copyright (c) 2003 - 2008 by Roland Haeder                           *
+ * Copyright (c) 2003 - 2009 by Roland Haeder                           *
  * For more information visit: http://www.mxchange.org                  *
  *                                                                      *
  * This program is free software; you can redistribute it and/or modify *
@@ -32,82 +37,42 @@
  ************************************************************************/
 
 // Some security stuff...
-if (ereg(basename(__FILE__), $_SERVER['PHP_SELF']))
-{
-	$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
-	require($INC);
-}
-
-// Check if view.php nor click.php was called
-// If not set variables to default
-if (empty($CLICK)) $CLICK = 0;
-if (empty($VIEW))  $VIEW  = 0;
-
-// Skip updating of cookies when viewing a banner
-if (($VIEW == 1) && ($_SERVER['PHP_SELF'])) return;
+if (!defined('__SECURITY')) {
+	die();
+} // END - if
 
-// Session management initalization
-if (empty($PHPSESSID)) {
-	// This fixes some strange session cookie problems
-	if (empty($_COOKIE['PHPSESSID'])) unset($_COOKIE['PHPSESSID']);
-	@session_start();
-	$PHPSESSID = @session_id();
-} else {
-	@session_id($PHPSESSID);
-	@session_start();
-}
+// Is ext-sql_patches there and newer?
+if (isExtensionInstalledAndNewer('sql_patches', '0.5.3')) {
+	// Set session save path if set
+	if (getConfig('session_save_path') != '') {
+		// Please make sure this valid!
+		session_save_path(getConfig('session_save_path'));
+	} // END - if
+} // END - if
 
-// Store PHPSESSID
-@setcookie("PHPSESSID", $PHPSESSID, (time() + $CONFIG['online_timeout']), COOKIE_PATH);
+// Is a session id there?
+if (session_id() == '') {
+	// Start the session
+	$GLOBALS['valid_session'] = session_start();
+} // END - if
 
-// Store language code in cookie
-@setcookie("mx_lang", $mx_lang, (time() + $CONFIG['online_timeout']), COOKIE_PATH);
+// Load language file(s)
+loadLanguageFile();
 
-// Check if refid is set
-if ((!empty($_GET['user'])) && ($CLICK == 1) && ($_SERVER['PHP_SELF'] == "click.php")) {
-	// The variable user comes from the click-counter script click.php and we only accept this here
-	$GLOBALS['refid'] = bigintval($_GET['user']);
-}
+// Determine and set referal id
+determineReferalId();
 
-if (!empty($_POST['refid'])) {
-	// Get referral id from variable refid (so I hope this makes my script more compatible to other scripts)
-	$GLOBALS['refid'] = SQL_ESCAPE(strip_tags($_POST['refid']));
-} elseif (!empty($_GET['refid'])) {
-	// Get referral id from variable refid (so I hope this makes my script more compatible to other scripts)
-	$GLOBALS['refid'] = SQL_ESCAPE(strip_tags($_GET['refid']));
-} elseif (!empty($_GET['ref'])) {
-	// Set refid=ref (the referral link uses such variable)
-	$GLOBALS['refid'] = SQL_ESCAPE(strip_tags($_GET['ref']));
-} elseif (!empty($_COOKIE['refid'])) {
-	// Simply reset cookie
-	$GLOBALS['refid'] = bigintval($_COOKIE['refid']);
-} elseif (GET_EXT_VERSION("sql_patches") != "") {
-	// Set default refid as refid in URL
-	$GLOBALS['refid'] = $CONFIG['def_refid'];
-} else {
-	// No default ID when sql_patches is not installed
-	$GLOBALS['refid'] = 0;
-}
+// Transfer userid from session and validate it
+if (isSessionVariableSet('userid')) {
+	// Get it secured from session
+	setMemberId(getSession('userid'));
 
-// Set cookie when default refid > 0
-if (empty($_COOKIE['refid']) || (!empty($GLOBALS['refid'])) || (($_COOKIE['refid'] == "0") && ($CONFIG['def_refid'] > 0))) {
-	// Set cookie
-	@setcookie("refid", $GLOBALS['refid'], (time() + $CONFIG['online_timeout']), COOKIE_PATH);
-}
+	// Is it valid?
+	if (!isMember()) {
+		// Then destroy the user id
+		destroyMemberSession();
+	} // END - if
+} // END - if
 
-// Test cookies if index.php or modules.php is loaded
-if ((basename($_SERVER['PHP_SELF']) == "index.php") || (basename($_SERVER['PHP_SELF']) == "modules.php") || (mxchange_installing))
-{
-	if (count($_COOKIE) > 0)
-	{
-		// Cookies accepted!
-		define('__COOKIES', true);
-	}
-	 else
-	{
-		// Cookies rejected!
-		define('__COOKIES', false);
-	}
-}
-//
+// [EOF]
 ?>