diff options
author | friendica <info@friendica.com> | 2013-01-21 19:56:39 -0800 |
---|---|---|
committer | friendica <info@friendica.com> | 2013-01-21 19:56:39 -0800 |
commit | fb76675a28b37b7281546373671d0dabbd69ef46 (patch) | |
tree | 974b2d68c4aed5a64d383654808cbf3163768771 /include | |
parent | 4119e1f9cc9ebb6a45ec69fd23c1262b3f823c3a (diff) | |
download | volse-hubzilla-fb76675a28b37b7281546373671d0dabbd69ef46.tar.gz volse-hubzilla-fb76675a28b37b7281546373671d0dabbd69ef46.tar.bz2 volse-hubzilla-fb76675a28b37b7281546373671d0dabbd69ef46.zip |
now we're into the minor nitty fixes
Diffstat (limited to 'include')
-rw-r--r-- | include/auth.php | 6 | ||||
-rw-r--r-- | include/security.php | 2 |
2 files changed, 4 insertions, 4 deletions
diff --git a/include/auth.php b/include/auth.php index 75a450dc8..9cdbd80d5 100644 --- a/include/auth.php +++ b/include/auth.php @@ -63,9 +63,9 @@ if((isset($_SESSION)) && (x($_SESSION,'authenticated')) && ((! (x($_POST,'auth-p info( t('Logged out.') . EOL); goaway(z_root()); } - +dbg(1); if(x($_SESSION,'visitor_id') && (! x($_SESSION,'uid'))) { - $r = q("select * from hubloc left join xchan on xchan_hash = hubloc_hash where hubloc_addr = '%s' limit 1", + $r = q("select * from hubloc left join xchan on xchan_hash = hubloc_hash where hubloc_hash = '%s' limit 1", dbesc($_SESSION['visitor_id']) ); if($r) { @@ -77,7 +77,7 @@ if((isset($_SESSION)) && (x($_SESSION,'authenticated')) && ((! (x($_POST,'auth-p } $a->set_groups(init_groups_visitor($_SESSION['visitor_id'])); } - +dbg(0); if(x($_SESSION,'uid') || x($_SESSION,'account_id')) { // already logged in user returning diff --git a/include/security.php b/include/security.php index 25318b3e8..f28174153 100644 --- a/include/security.php +++ b/include/security.php @@ -349,7 +349,7 @@ if(! function_exists('init_groups_visitor')) { function init_groups_visitor($contact_id) { $groups = array(); $r = q("SELECT gid FROM group_member WHERE xchan = '%s' ", - intval($contact_id) + dbesc($contact_id) ); if(count($r)) { foreach($r as $rr) |