aboutsummaryrefslogtreecommitdiffstats
path: root/mod/post.php
diff options
context:
space:
mode:
authorfriendica <info@friendica.com>2013-03-26 16:20:44 -0700
committerfriendica <info@friendica.com>2013-03-26 16:20:44 -0700
commit63c6427dc42318d0ae6d000ec52fa80c7582d1d4 (patch)
tree4b56bd2518bcc200158042cc5838c9b2033df892 /mod/post.php
parent783d744f02b844fbd3d151eb649a7c6dbbb18d83 (diff)
downloadvolse-hubzilla-63c6427dc42318d0ae6d000ec52fa80c7582d1d4.tar.gz
volse-hubzilla-63c6427dc42318d0ae6d000ec52fa80c7582d1d4.tar.bz2
volse-hubzilla-63c6427dc42318d0ae6d000ec52fa80c7582d1d4.zip
magic auth issue
Diffstat (limited to 'mod/post.php')
-rw-r--r--mod/post.php14
1 files changed, 11 insertions, 3 deletions
diff --git a/mod/post.php b/mod/post.php
index d061a7078..e5c68d4bd 100644
--- a/mod/post.php
+++ b/mod/post.php
@@ -19,7 +19,7 @@ function post_init(&$a) {
$webbie = argv(1);
if(array_key_exists('auth',$_REQUEST)) {
-
+ logger('mod_zot: auth request received.');
$address = $_REQUEST['auth'];
$dest = $_REQUEST['dest'];
$sec = $_REQUEST['sec'];
@@ -95,10 +95,17 @@ function post_init(&$a) {
$j = json_decode($result['body'],true);
}
- if($already_authed || $j['result']) {
+ if($already_authed || $j['success']) {
// everything is good... maybe
if(local_user()) {
- notice( t('Remote authentication blocked. You are logged into this site locally. Please logout and retry.') . EOL);
+
+ // tell them to logout if they're logged in locally as anything but the target remote account
+ // in which case just shut up because they don't need to be doing this at all.
+
+ if($a->channel['channel_hash'] != $x[0]['xchan_hash']) {
+ logger('mod_zot: auth: already authenticated locally as somebody else.');
+ notice( t('Remote authentication blocked. You are logged into this site locally. Please logout and retry.') . EOL);
+ }
goaway($desturl);
}
// log them in
@@ -350,6 +357,7 @@ function post_post(&$a) {
}
if($msgtype === 'auth_check') {
+ logger('mod_zot: auth_check');
$arr = $data['sender'];
$sender_hash = base64url_encode(hash('whirlpool',$arr['guid'] . $arr['guid_sig'], true));