gnh1201/reasonableframework
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update security.php

Browse Source
This commit is contained in:
Namhyeon Go 2018-02-13 15:57:03 +09:00 committed by GitHub
parent ebe42f1367
commit 0d7c023565
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 7 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
system/security.php
View File

@ -262,13 +262,18 @@ if(!function_exists("session_logout")) {
set_session("ss_key", ""); set_session("ss_key", "");
} }
// delete session file
@unlink($config['session_dir'] . '/' . protect_dir_path($ss_key)); @unlink($config['session_dir'] . '/' . protect_dir_path($ss_key));
// 토큰이 지워졌는지 화인 // permanently destory
session_unset();
session_destroy();
// check ereased token
$abuse = check_token_abuse($ss_user_name, get_session("ss_user_name")); $abuse = check_token_abuse($ss_user_name, get_session("ss_user_name"));
$abuse = ($abuse && check_token_abuse($ss_key, get_session("ss_key"))); $abuse = ($abuse && check_token_abuse($ss_key, get_session("ss_key")));
// 판단 결과를 반영 // apply result
$flag = $abuse; $flag = $abuse;
return $flag; return $flag;