From 7e709addb5a25eb2011fa79d20d94d3a802b672d Mon Sep 17 00:00:00 2001 From: ProjectPatatoe Date: Sun, 21 Mar 2021 13:59:39 -0700 Subject: [PATCH] no cookie for just reading --- system/admin/admin.php | 2 ++ system/htmly.php | 1 + system/includes/session.php | 5 +++-- 3 files changed, 6 insertions(+), 2 deletions(-) diff --git a/system/admin/admin.php b/system/admin/admin.php index 3ab4a56..0c31df1 100644 --- a/system/admin/admin.php +++ b/system/admin/admin.php @@ -53,6 +53,7 @@ function session($user, $pass) if ($user_enc == "password_hash") { if (password_verify($pass, $user_pass)) { + if (session_status() == PHP_SESSION_NONE) session_start(); if (password_needs_rehash($user_pass, PASSWORD_DEFAULT)) { update_user($user, $pass, $user_role); } @@ -62,6 +63,7 @@ function session($user, $pass) return $str = '
'; } } else if (old_password_verify($pass, $user_enc, $user_pass)) { + if (session_status() == PHP_SESSION_NONE) session_start(); update_user($user, $pass, $user_role); $_SESSION[config("site.url")]['user'] = $user; header('location: admin'); diff --git a/system/htmly.php b/system/htmly.php index 431cd8f..f714c71 100644 --- a/system/htmly.php +++ b/system/htmly.php @@ -2648,6 +2648,7 @@ get('/:static', function ($static) { } die; } elseif ($static === 'login') { + if (session_status() == PHP_SESSION_NONE) session_start(); config('views.root', 'system/admin/views'); render('login', array( 'title' => 'Login - ' . blog_title(), diff --git a/system/includes/session.php b/system/includes/session.php index 071dacf..df3aa1d 100644 --- a/system/includes/session.php +++ b/system/includes/session.php @@ -1,9 +1,10 @@