Strona główna Odkrywaj Pomoc
Zaloguj się
yosoyhendrix
/
hestiacp
kopia lustrzana https://github.com/hestiacp/hestiacp
1
0
Forkuj 0
Pliki Problemy 0 Wiki
Przeglądaj źródła

Replace v_murmur with v_session_id

Kristan Kenney 5 lat temu
rodzic
2d0b57edf0
commit
970312e03a
4 zmienionych plików z 14 dodań i 14 usunięć
Widok podzielony Pokaż statystyki zmian
  1. 2 2
      web/delete/log/auth/index.php
  2. 4 4
      web/inc/main.php
  3. 6 6
      web/login/index.php
  4. 2 2
      web/logout/index.php

+ 2 - 2
web/delete/log/auth/index.php
Wyświetl plik 

@@ -25,8 +25,8 @@ if(isset($_SERVER['HTTP_CF_CONNECTING_IP'])){
 
 } 
 $v_ip = escapeshellarg($ip);
 
     
-$v_murmur = escapeshellarg($_SESSION['token']);
 
-exec(HESTIA_CMD."v-log-user-login ".$v_username." ".$v_ip." success ".$v_murmur, $output, $return_var);
 
+$v_session_id = escapeshellarg($_SESSION['token']);
 
+exec(HESTIA_CMD."v-log-user-login ".$v_username." ".$v_ip." success ".$v_session_id, $output, $return_var);
 
 
 // Render page
 
 //render_page($user, $TAB, 'list_auth');

+ 4 - 4
web/inc/main.php
Wyświetl plik 

@@ -39,8 +39,8 @@ if (!isset($_SESSION['user_combined_ip'])){
 
 // Checking user to use session from the same IP he has been logged in
 
 if ($_SESSION['user_combined_ip'] != $user_combined_ip && $_SERVER['REMOTE_ADDR'] != '127.0.0.1'){
 
     $v_user = escapeshellarg($_SESSION['user']);
 
-    $v_murmur = escapeshellarg($_SESSION['token']);
 
-    exec(HESTIA_CMD."v-log-user-logout ".$v_user." ".$v_murmur, $output, $return_var);
 
+    $v_session_id = escapeshellarg($_SESSION['token']);
 
+    exec(HESTIA_CMD."v-log-user-logout ".$v_user." ".$v_session_id, $output, $return_var);
 
     session_destroy();
 
     session_start();
 
     $_SESSION['request_uri'] = $_SERVER['REQUEST_URI'];
 
@@ -80,8 +80,8 @@ if (!defined('NO_AUTH_REQUIRED')){
 
         header("Location: /login/");
 
     } else if ($_SESSION['INACTIVE_SESSION_TIMEOUT'] * 60 + $_SESSION['LAST_ACTIVITY'] < time()) {
 
         $v_user = escapeshellarg($_SESSION['user']);
 
-        $v_murmur = escapeshellarg($_SESSION['token']);
 
-        exec(HESTIA_CMD."v-log-user-logout ".$v_user." ".$v_murmur, $output, $return_var);
 
+        $v_session_id = escapeshellarg($_SESSION['token']);
 
+        exec(HESTIA_CMD."v-log-user-logout ".$v_user." ".$v_session_id, $output, $return_var);
 
         session_destroy();
 
         header("Location: /login/");
 
     } else {

+ 6 - 6
web/login/index.php
Wyświetl plik 

@@ -137,8 +137,8 @@ function authenticate_user($user, $password, $twofa = ''){
 
             if ( $return_var > 0 ) {
 
                 sleep(2);
 
                 $error = "<a class=\"error\">"._('Invalid username or password')."</a>";
 
-                $v_murmur = escapeshellarg($_POST['token']);
 
-                exec(HESTIA_CMD."v-log-user-login ".$v_user." ".$v_ip." failed ".$v_murmur, $output, $return_var);
 
+                $v_session_id = escapeshellarg($_POST['token']);
 
+                exec(HESTIA_CMD."v-log-user-login ".$v_user." ".$v_ip." failed ".$v_session_id, $output, $return_var);
 
 
                 return $error;
 
             } else {
 
@@ -161,8 +161,8 @@ function authenticate_user($user, $password, $twofa = ''){
 
                                 $error = "<a class=\"error\">"._('Invalid or missing 2FA token')."</a>";
 
                                 $_SESSION['login']['username'] = $user;
 
                                 $_SESSION['login']['password'] = $password;
 
-                                $v_murmur = escapeshellarg($_POST['token']);
 
-                                exec(HESTIA_CMD."v-log-user-login ".$v_user." ".$v_ip." failed ".$v_murmur, $output, $return_var);
 
+                                $v_session_id = escapeshellarg($_POST['token']);
 
+                                exec(HESTIA_CMD."v-log-user-login ".$v_user." ".$v_ip." failed ".$v_session_id, $output, $return_var);
 
                                 return $error;
 
                                 unset($_POST['twofa']);
 
                             }
 
@@ -175,8 +175,8 @@ function authenticate_user($user, $password, $twofa = ''){
 
                 $_SESSION['user'] = key($data);
 
                 $v_user = $_SESSION['user'];
 
                 //log successfull login attempt
 
-                $v_murmur = escapeshellarg($_POST['token']);
 
-                exec(HESTIA_CMD."v-log-user-login ".$v_user." ".$v_ip." success ".$v_murmur, $output, $return_var);
 
+                $v_session_id = escapeshellarg($_POST['token']);
 
+                exec(HESTIA_CMD."v-log-user-login ".$v_user." ".$v_ip." success ".$v_session_id, $output, $return_var);
 
 
                 $_SESSION['LAST_ACTIVITY'] = time();
 
                 $_SESSION['MURMUR'] = $_POST['murmur'];

+ 2 - 2
web/logout/index.php
Wyświetl plik 

@@ -14,8 +14,8 @@ if (!empty($_SESSION['look'])) {
 
 } else {
 
     if($_SESSION['token'] && $_SESSION['user']){
 
         $v_user = escapeshellarg($_SESSION['user']);
 
-        $v_murmur = escapeshellarg($_SESSION['token']);
 
-        exec(HESTIA_CMD."v-log-user-logout ".$v_user." ".$v_murmur, $output, $return_var);
 
+        $v_session_id = escapeshellarg($_SESSION['token']);
 
+        exec(HESTIA_CMD."v-log-user-logout ".$v_user." ".$v_session_id, $output, $return_var);
 
     }
 
     
     session_destroy();