Changeset 4503 for branches/2.0/admin/include
- Timestamp:
- Dec 16, 2009, 12:22:49 AM (14 years ago)
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
branches/2.0/admin/include/functions.php
r4502 r4503 31 31 * @return void access denied if token given is not equal to server token 32 32 */ 33 function check_token() 33 function check_pwg_token() 34 { 35 $valid_token = get_pwg_token(); 36 $given_token = null; 37 38 if (!empty($_POST['pwg_token'])) 39 { 40 $given_token = $_POST['pwg_token']; 41 } 42 elseif (!empty($_GET['pwg_token'])) 43 { 44 $given_token = $_GET['pwg_token']; 45 } 46 if ($given_token != $valid_token) 47 { 48 access_denied(); 49 } 50 } 51 52 function get_pwg_token() 34 53 { 35 54 global $conf; 36 55 37 $valid_token = hash_hmac('md5', session_id(), $conf['secret_key']); 38 $given_token = null; 39 40 if (!empty($_POST['pwg_token'])) 41 { 42 $given_token = $_POST['pwg_token']; 43 } 44 elseif (!empty($_GET['pwg_token'])) 45 { 46 $given_token = $_GET['pwg_token']; 47 } 48 if ($given_token != $valid_token) 49 { 50 access_denied(); 51 } 56 return hash_hmac('md5', session_id(), $conf['secret_key']); 52 57 } 53 58
Note: See TracChangeset
for help on using the changeset viewer.