From 1f0d3e07659dba7cd4ff6592f85cc6cef66e58eb Mon Sep 17 00:00:00 2001
From: Andrew Dolgov <fox@madoka.spb.ru>
Date: Fri, 17 Mar 2006 06:11:45 +0100
Subject: fix ?rt= handling in login.php

---
 login.php | 14 +++++---------
 1 file changed, 5 insertions(+), 9 deletions(-)

diff --git a/login.php b/login.php
index 6f9bc1c90..733be8c9d 100644
--- a/login.php
+++ b/login.php
@@ -18,6 +18,7 @@
 
 	$login = $_POST["login"];
 	$password = $_POST["password"];
+	$return_to = $_POST["rt"];
 
 	if ($_COOKIE["ttrss_sid"]) {
 		require_once "sessions.php";
@@ -41,20 +42,14 @@
 		if (authenticate_user($link, $login, $password)) {
 			initialize_user_prefs($link, $_SESSION["uid"]); 
 			
-			if ($_SESSION["login_redirect"]) {
-				$redirect_to = $_SESSION["login_redirect"];
-			} else {
-				$redirect_to = "tt-rss.php";
+			if (!$return_to) {
+				$return_to = "tt-rss.php";
 			}
-			header("Location: $redirect_base/$redirect_to");
+			header("Location: $redirect_base/$return_to");
 			exit;
 		}
 	}
 
-	if ($_GET["rt"]) {
-		$_SESSION["login_redirect"] = $_GET["rt"];
-	}
-
 ?>
 <html>
 <head>
@@ -90,6 +85,7 @@
 	</td></tr>
 	<tr><td colspan="2" align="center">
 		<input type="submit" class="button" value="Login">
+		<input type="hidden" name="rt" value="<?= $_GET['rt'] ?>">
 	</td></tr>
 	
 	</table>
-- 
cgit v1.2.3