Browse Source

backend: add session validation check

Andrew Dolgov 6 years ago
parent
commit
ccfa90803b
1 changed files with 5 additions and 0 deletions
  1. 5 0
      backend.php

+ 5 - 0
backend.php

@@ -62,6 +62,11 @@
 	}
 
 	if ($_SESSION["uid"]) {
+		if (!validate_session($link)) {
+			header("Content-Type: text/json");
+			print json_encode(array("error" => array("code" => 6)));
+			return;
+		}
 		load_user_plugins($link, $_SESSION["uid"]);
 	}