From 5160620c8a3c940688f60cc32abb2387a87139dd Mon Sep 17 00:00:00 2001
From: Andrew Dolgov <fox@madoka.volgo-balt.ru>
Date: Thu, 28 Mar 2013 08:06:21 +0400
Subject: only autostart session if login cookie exists

---
 api/index.php | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

(limited to 'api')

diff --git a/api/index.php b/api/index.php
index 147157946..d248c4f85 100644
--- a/api/index.php
+++ b/api/index.php
@@ -46,10 +46,9 @@
 
 	if ($_REQUEST["sid"]) {
 		session_id($_REQUEST["sid"]);
+		@session_start();
 	}
 
-	@session_start();
-
 	if (!init_connection($link)) return;
 
 	$method = strtolower($_REQUEST["op"]);
-- 
cgit v1.2.3