lainwir3d/dolibarr
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fix: ajout de log sur le refus du jeton

Browse Source
This commit is contained in:
Regis Houssin 2009-05-16 16:12:09 +00:00
parent 1d719e2317
commit 36c58c62fc
1 changed files with 10 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
htdocs/main.inc.php
View File

@ -181,13 +181,21 @@ if (isset($_POST['token_level_1']) && isset($_SESSION['token_level_1']))
{
//print 'post_token_level_1='.$_POST['token_level_1'].'<br>';
//print 'session_token_level_1='.$_SESSION['token_level_1'].'<br>';
if ($_POST['token_level_1'] != $_SESSION['token_level_1']) unset($_POST);
if ($_POST['token_level_1'] != $_SESSION['token_level_1'])
{
unset($_POST);
dol_syslog("Invalid token_level_1 in ".$_SERVER['HTTP_REFERER'].", action=".$_POST['action'].", _POST['token_level_1']=".$_POST['token_level_1'].", _SESSION['token_level_1']=".$_SESSION['token_level_1']);
}
}
else if (isset($_POST['token_level_2']) && isset($_SESSION['token_level_2']))
{
//print 'post_token_level_2='.$_POST['token_level_2'].'<br>';
//print 'session_token_level_2='.$_SESSION['token_level_2'].'<br>';
if ($_POST['token_level_2'] != $_SESSION['token_level_2']) unset($_POST);
if ($_POST['token_level_2'] != $_SESSION['token_level_2'])
{
unset($_POST);
dol_syslog("Invalid token_level_2 in ".$_SERVER['HTTP_REFERER'].", action=".$_POST['action'].", _POST['token_level_2']=".$_POST['token_level_2'].", _SESSION['token_level_2']=".$_SESSION['token_level_2']);
}
}