backend: check for session first, then open DB

author: Andrew Dolgov <[email protected]> 2017-06-28 13:40:35 +0300
committer: Andrew Dolgov <[email protected]> 2017-06-28 13:40:35 +0300
commit: 77117171c6e68e229b83f2db71f41c206ec0da0c (patch)
tree: e909e94107d2fce24c0c29d1551eba2374e92b94
parent: 33709de21e902e7a3e593883fc18c94361eb3c37 (diff)
1 files changed, 5 insertions, 5 deletions
diff --git a/backend.php b/backend.php
index 4ab000d..018c0e8 100644
--- a/backend.php
+++ b/backend.php
@@ -4,13 +4,9 @@
 	require_once "sessions.php";
 	require_once "db.php";
 
-	$ldb = Db::get();
-
-	$op = $_REQUEST["op"];
-
 	header("Content-type: text/json");
 
-	$owner = SQLite3::escapeString($_SESSION["owner"]);
+	@$owner = SQLite3::escapeString($_SESSION["owner"]);
 
 	if (!$owner) {
 		header($_SERVER["SERVER_PROTOCOL"]." 401 Unauthorized");
@@ -18,6 +14,10 @@
 		die;
 	}
 
+	$op = $_REQUEST["op"];
+
+	$ldb = Db::get();
+
 	ob_start("ob_gzhandler");
 
 	switch ($op) {
author	Andrew Dolgov <[email protected]>	2017-06-28 13:40:35 +0300
committer	Andrew Dolgov <[email protected]>	2017-06-28 13:40:35 +0300
commit	77117171c6e68e229b83f2db71f41c206ec0da0c (patch)
tree	e909e94107d2fce24c0c29d1551eba2374e92b94
parent	33709de21e902e7a3e593883fc18c94361eb3c37 (diff)