[aur-dev] [PATCH] aur.inc.php: Use delete_session_id() where appropriate

Sat Jul 14 13:50:12 EDT 2012

Signed-off-by: canyonknight <canyonknight at gmail.com>
---
 web/lib/aur.inc.php | 4 +---
 1 file changed, 1 insertion(+), 3 deletions(-)

diff --git a/web/lib/aur.inc.php b/web/lib/aur.inc.php
index f82a96a..5a70e77 100644
--- a/web/lib/aur.inc.php
+++ b/web/lib/aur.inc.php
@@ -52,9 +52,7 @@ function check_sid($dbh=NULL) {
 		} elseif ($failed == 2) {
 			# session id timeout was reached and they must login again.
 			#
-			$q = "DELETE FROM Sessions WHERE SessionID = '";
-			$q.= db_escape_string($_COOKIE["AURSID"]) . "'";
-			db_query($q, $dbh);
+			delete_session_id($_COOKIE["AURSID"], $dbh);
 
 			setcookie("AURSID", "", 1, "/", null, !empty($_SERVER['HTTPS']), true);
 			unset($_COOKIE['AURSID']);
-- 
1.7.11.2

