[aur-dev] [PATCH] aur.inc.php: Use delete_session_id() where appropriate
canyonknight
canyonknight at gmail.com
Sat Jul 14 13:50:12 EDT 2012
Signed-off-by: canyonknight <canyonknight at gmail.com>
---
web/lib/aur.inc.php | 4 +---
1 file changed, 1 insertion(+), 3 deletions(-)
diff --git a/web/lib/aur.inc.php b/web/lib/aur.inc.php
index f82a96a..5a70e77 100644
--- a/web/lib/aur.inc.php
+++ b/web/lib/aur.inc.php
@@ -52,9 +52,7 @@ function check_sid($dbh=NULL) {
} elseif ($failed == 2) {
# session id timeout was reached and they must login again.
#
- $q = "DELETE FROM Sessions WHERE SessionID = '";
- $q.= db_escape_string($_COOKIE["AURSID"]) . "'";
- db_query($q, $dbh);
+ delete_session_id($_COOKIE["AURSID"], $dbh);
setcookie("AURSID", "", 1, "/", null, !empty($_SERVER['HTTPS']), true);
unset($_COOKIE['AURSID']);
--
1.7.11.2
More information about the aur-dev
mailing list