bug fixes for authentication

author: cassio <cassiopc@gmail.com> 2015-09-13 11:40:58 +0000
committer: cassio <cassiopc@gmail.com> 2015-09-13 11:40:58 +0000
commit: 0e7484e5c9e17e8eb21f5113774963605ddf1b87 (patch)
tree: 54a8d57d9d5d10b33aad9a741bd9a275686ae377 /src/flog.php
parent: 40ed6646e902830881fe2c530ce110d73f5a5a0b (diff)
download: boca-0e7484e5c9e17e8eb21f5113774963605ddf1b87.tar.gz
boca-0e7484e5c9e17e8eb21f5113774963605ddf1b87.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/src/flog.php b/src/flog.php
index 5eea441..5aef8e0 100644
--- a/src/flog.php
+++ b/src/flog.php
@@ -133,6 +133,9 @@ function DBLogInContest($name,$pass,$contest,$msg=true) {
 	}
 	$a = DBUserInfo($b["contestnumber"], $b["contestlocalsite"],$a['usernumber'],null,false);
 	$_SESSION['usertable'] = $a;
+	$_SESSION['usertable']['usersession']='';
+	$_SESSION['usertable']['userip']='';
+
 	$p = myhash($a["userpassword"] . session_id());
 	$_SESSION['usertable']['userpassword'] = $p;
 	if ($a["userpassword"] != "" && $p != $pass) {
@@ -175,6 +178,8 @@ function DBLogInContest($name,$pass,$contest,$msg=true) {
 			}
 		}
 	}
+	$_SESSION['usertable']['usersession']=session_id();
+	$_SESSION['usertable']['userip']=$gip;
 	$c = DBConnect();
 	$t = time();
 	if($a["usertype"] == "team" && $a["usermultilogin"] != "t" && $a["userpermitip"] == "") {
author	cassio <cassiopc@gmail.com>	2015-09-13 11:40:58 +0000
committer	cassio <cassiopc@gmail.com>	2015-09-13 11:40:58 +0000
commit	0e7484e5c9e17e8eb21f5113774963605ddf1b87 (patch)
tree	54a8d57d9d5d10b33aad9a741bd9a275686ae377 /src/flog.php
parent	40ed6646e902830881fe2c530ce110d73f5a5a0b (diff)
download	boca-0e7484e5c9e17e8eb21f5113774963605ddf1b87.tar.gz boca-0e7484e5c9e17e8eb21f5113774963605ddf1b87.zip