diff options
Diffstat (limited to 'include/auth.php')
| -rw-r--r-- | include/auth.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/include/auth.php b/include/auth.php index b856379f1..6a50362d6 100644 --- a/include/auth.php +++ b/include/auth.php @@ -2,8 +2,8 @@ // login/logout -if((x($_SESSION,'authenticated')) && (! ($_POST['auth-params'] == 'login'))) { - if($_POST['auth-params'] == 'logout' || $a->module == "logout") { +if((x($_SESSION,'authenticated')) && (! ($_POST['auth-params'] === 'login'))) { + if($_POST['auth-params'] === 'logout' || $a->module === 'logout') { unset($_SESSION['authenticated']); unset($_SESSION['uid']); unset($_SESSION['visitor_id']); @@ -46,7 +46,7 @@ else { $encrypted = hash('whirlpool',trim($_POST['password'])); - if((x($_POST,'auth-params')) && $_POST['auth-params'] == 'login') { + if((x($_POST,'auth-params')) && $_POST['auth-params'] === 'login') { $r = q("SELECT * FROM `user` WHERE `email` = '%s' AND `password` = '%s' AND `blocked` = 0 AND `verified` = 1 LIMIT 1", dbesc(trim($_POST['login-name'])), |