From fb76675a28b37b7281546373671d0dabbd69ef46 Mon Sep 17 00:00:00 2001 From: friendica Date: Mon, 21 Jan 2013 19:56:39 -0800 Subject: now we're into the minor nitty fixes --- include/auth.php | 6 +++--- include/security.php | 2 +- 2 files changed, 4 insertions(+), 4 deletions(-) (limited to 'include') diff --git a/include/auth.php b/include/auth.php index 75a450dc8..9cdbd80d5 100644 --- a/include/auth.php +++ b/include/auth.php @@ -63,9 +63,9 @@ if((isset($_SESSION)) && (x($_SESSION,'authenticated')) && ((! (x($_POST,'auth-p info( t('Logged out.') . EOL); goaway(z_root()); } - +dbg(1); if(x($_SESSION,'visitor_id') && (! x($_SESSION,'uid'))) { - $r = q("select * from hubloc left join xchan on xchan_hash = hubloc_hash where hubloc_addr = '%s' limit 1", + $r = q("select * from hubloc left join xchan on xchan_hash = hubloc_hash where hubloc_hash = '%s' limit 1", dbesc($_SESSION['visitor_id']) ); if($r) { @@ -77,7 +77,7 @@ if((isset($_SESSION)) && (x($_SESSION,'authenticated')) && ((! (x($_POST,'auth-p } $a->set_groups(init_groups_visitor($_SESSION['visitor_id'])); } - +dbg(0); if(x($_SESSION,'uid') || x($_SESSION,'account_id')) { // already logged in user returning diff --git a/include/security.php b/include/security.php index 25318b3e8..f28174153 100644 --- a/include/security.php +++ b/include/security.php @@ -349,7 +349,7 @@ if(! function_exists('init_groups_visitor')) { function init_groups_visitor($contact_id) { $groups = array(); $r = q("SELECT gid FROM group_member WHERE xchan = '%s' ", - intval($contact_id) + dbesc($contact_id) ); if(count($r)) { foreach($r as $rr) -- cgit v1.2.3