Changeset 1004 for trunk/admin/picture_modify.php

Timestamp:

Jan 15, 2006, 2:45:42 PM (18 years ago)

Author:

nikrou

Message:

Improve security of sessions:

• use only cookies to store session id on client side
• use default php session system with database handler to store sessions on server side

File:

• trunk/admin/picture_modify.php (modified) (2 diffs)

trunk/admin/picture_modify.php

@@ -196 +196 @@
   array(
     'U_SYNC' =>
-      add_session_id(
         PHPWG_ROOT_PATH.'admin.php?page=picture_modify'.
         '&image_id='.$_GET['image_id'].
         (isset($_GET['cat_id']) ? '&cat_id='.$_GET['cat_id'] : '').
-        '&sync_metadata=1'
-        ),
+        '&sync_metadata=1',
     
     'PATH'=>$row['path'],
@@ -231 +229 @@
   
     'F_ACTION' =>
-      add_session_id(
         PHPWG_ROOT_PATH.'admin.php'
         .get_query_string_diff(array('sync_metadata'))
-        )
     )
   );