From b2b9d3649d8e51a756e68aa81e00c87105de4aa3 Mon Sep 17 00:00:00 2001
From: Andrew Dolgov <noreply@fakecake.org>
Date: Tue, 16 Oct 2018 08:56:34 +0300
Subject: further session-related fixes

---
 login.php | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/login.php b/login.php
index d571497..ff8fd46 100644
--- a/login.php
+++ b/login.php
@@ -1,5 +1,6 @@
 <?php
 	require_once "config.php";
+	require_once "sessions.php";
 
 	@$op = $_REQUEST["op"];
 
@@ -17,11 +18,13 @@
 		$sth->execute([$user, $password]);
 
 		if ($line = $sth->fetch()) {
-			require_once "sessions.php";
 
 			if (session_status() != PHP_SESSION_NONE) {
 				session_destroy();
 				session_commit();
+
+				header("Location: login.php");
+				return;
 			}
 
 			session_regenerate_id(true);
-- 
cgit v1.2.3