diff options
author | Andrew Dolgov <[email protected]> | 2018-10-16 12:12:07 +0300 |
---|---|---|
committer | Andrew Dolgov <[email protected]> | 2018-10-16 12:12:07 +0300 |
commit | d246fb9fe1f18eb98037758f1b7369b34258fbf7 (patch) | |
tree | debc6bb2d67a15e725720cdc13e8d6bf4aa53b4c /include/sessions.php | |
parent | f8fc1ac54314dbd22c8673beb15d16780a0fc4c7 (diff) |
remove session REMOTE_ADDR checks
Diffstat (limited to 'include/sessions.php')
-rw-r--r-- | include/sessions.php | 9 |
1 files changed, 1 insertions, 8 deletions
diff --git a/include/sessions.php b/include/sessions.php index b79988d98..5584c25bd 100644 --- a/include/sessions.php +++ b/include/sessions.php @@ -49,15 +49,8 @@ if ($_SESSION["uid"]) { - if (!defined('_SKIP_SESSION_ADDRESS_CHECKS') || !_SKIP_SESSION_ADDRESS_CHECKS) { - if ($_SESSION["ip_address"] != $_SERVER["REMOTE_ADDR"]) { - $_SESSION["login_error_msg"] = __("Session failed to validate."); - return false; - } - } - if ($_SESSION["user_agent"] != sha1($_SERVER['HTTP_USER_AGENT'])) { - $_SESSION["login_error_msg"] = __("Session failed to validate."); + $_SESSION["login_error_msg"] = __("Session failed to validate (UA changed)."); return false; } |