X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Fsession.php;h=1e156d17e7174a386df97f29b8425f89374dd8ea;hb=9cfe8dd2ab2dc5b3abb38789c8819adcb797155f;hp=7710e9bf6553a3f1629d824d1b17c893fc2bbb76;hpb=ae80e170b5d25a4782af90a7c3d81fbb176fa293;p=mailer.git

diff --git a/inc/session.php b/inc/session.php
index 7710e9bf65..1e156d17e7 100644
--- a/inc/session.php
+++ b/inc/session.php
@@ -10,7 +10,12 @@
  * -------------------------------------------------------------------- *
  * Kurzbeschreibung  : Sitzungs-Management                              *
  * -------------------------------------------------------------------- *
- *                                                                      *
+ * $Revision::                                                        $ *
+ * $Date::                                                            $ *
+ * $Tag:: 0.2.1-FINAL                                                 $ *
+ * $Author::                                                          $ *
+ * Needs to be in all Files and every File needs "svn propset           *
+ * svn:keywords Date Revision" (autoprobset!) at least!!!!!!            *
  * -------------------------------------------------------------------- *
  * Copyright (c) 2003 - 2008 by Roland Haeder                           *
  * For more information visit: http://www.mxchange.org                  *
@@ -32,73 +37,46 @@
  ************************************************************************/
 
 // Some security stuff...
-if (ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) {
-	$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
+if (!defined('__SECURITY')) {
+	$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), '/inc') + 4) . '/security.php';
 	require($INC);
 }
 
-// Check if view.php nor click.php was called
-// If not set variables to default
-if (empty($CLICK)) $CLICK = 0;
-if (empty($VIEW))  $VIEW  = 0;
-
-// Skip updating of cookies when viewing a banner
-if (($VIEW == 1) && ($_SERVER['PHP_SELF'])) return;
+// Set session save path if set
+if (getConfig('session_save_path') != "") {
+	// Please make sure this valid!
+	session_save_path(getConfig('session_save_path'));
+} // END - if
 
 // Start the session
-@session_start();
-$PHPSESSID = @session_id();
+session_start();
 
-// Store language code in cookie
-set_session("mx_lang", $mx_lang);
+// Load language system
+LOAD_INC_ONCE("inc/language.php");
 
 // Load extensions here
-require_once(PATH."inc/load_extensions.php");
+LOAD_INC_ONCE("inc/load_extensions.php");
 
-// Check if refid is set
-if ((!empty($_GET['user'])) && ($CLICK == 1) && ($_SERVER['PHP_SELF'] == "click.php")) {
-	// The variable user comes from the click-counter script click.php and we only accept this here
-	$GLOBALS['refid'] = bigintval($_GET['user']);
-} elseif (!empty($_POST['refid'])) {
-	// Get referral id from variable refid (so I hope this makes my script more compatible to other scripts)
-	$GLOBALS['refid'] = SQL_ESCAPE(strip_tags($_POST['refid']));
-} elseif (!empty($_GET['refid'])) {
-	// Get referral id from variable refid (so I hope this makes my script more compatible to other scripts)
-	$GLOBALS['refid'] = SQL_ESCAPE(strip_tags($_GET['refid']));
-} elseif (!empty($_GET['ref'])) {
-	// Set refid=ref (the referral link uses such variable)
-	$GLOBALS['refid'] = SQL_ESCAPE(strip_tags($_GET['ref']));
-} elseif (isSessionVariableSet('refid')) {
-	// Set session refid als global
-	$GLOBALS['refid'] = bigintval(get_session('refid'));
-} elseif (GET_EXT_VERSION("sql_patches") != "") {
-	// Set default refid as refid in URL
-	$GLOBALS['refid'] = bigintval($_CONFIG['def_refid']);
-} else {
-	// No default ID when sql_patches is not installed
-	$GLOBALS['refid'] = 0;
-}
-
-// Set cookie when default refid > 0
-if (!isSessionVariableSet('refid') || (!empty($GLOBALS['refid'])) || ((get_session('refid') == "0") && ($_CONFIG['def_refid'] > 0))) {
-	// Set cookie
-	set_session("refid", $GLOBALS['refid']);
-}
+// Determine and set referal id
+DETERMINE_REFID();
 
 // Transfer userid from session and validate it
-if (isset($_SESSION['userid'])) {
+if (isSessionVariableSet('userid')) {
 	// Get it secured from session
-	$GLOBALS['userid'] = bigintval($_SESSION['userid']);
+	setUserId(GET_SESSION('userid'));
 
 	// Is it valid?
 	if (!IS_MEMBER()) {
 		// Then destroy the user id
 		destroy_user_session();
+
+		// Kill userid
+		setUserId(0);
 	} // END - if
-}
+} // END - if
 
 // Test session if index.php or modules.php is loaded
-if ((basename($_SERVER['PHP_SELF']) == "index.php") || (basename($_SERVER['PHP_SELF']) == "modules.php") || (isBooleanConstantAndTrue('mxchange_installing'))) {
+if ((basename($_SERVER['PHP_SELF']) == 'index.php') || (basename($_SERVER['PHP_SELF']) == 'modules.php') || (isInstalling())) {
 	if (count($_SESSION) > 0) {
 		// Session variables accepted!
 		define('__COOKIES', true);
@@ -106,7 +84,8 @@ if ((basename($_SERVER['PHP_SELF']) == "index.php") || (basename($_SERVER['PHP_S
 		// Cookies rejected!
 		define('__COOKIES', false);
 	}
-}
+} // END - if
+
 //* DEBUG: */ print("<pre>".print_r($_SESSION, true)."</pre>");
 
 //