diff options
| author | Minteck <contact@minteck.org> | 2022-05-22 18:16:34 +0200 |
|---|---|---|
| committer | Minteck <contact@minteck.org> | 2022-05-22 18:16:34 +0200 |
| commit | bc4d21ddbc50a4295ad1be0f4797b09895a65fea (patch) | |
| tree | f915c08fba577daf766628657558ce480790b06f /includes/session.locked.initial.php | |
| download | multisocial-mane.tar.gz multisocial-mane.tar.bz2 multisocial-mane.zip | |
Diffstat (limited to 'includes/session.locked.initial.php')
| -rw-r--r-- | includes/session.locked.initial.php | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/includes/session.locked.initial.php b/includes/session.locked.initial.php new file mode 100644 index 0000000..9832790 --- /dev/null +++ b/includes/session.locked.initial.php @@ -0,0 +1,22 @@ +<?php + +if (isset($_COOKIE['MMSP_SESSION_TOKEN'])) { + if (str_contains($_COOKIE['MMSP_SESSION_TOKEN'], ".") || str_contains($_COOKIE['MMSP_SESSION_TOKEN'], "/")) { + header("Location: /explore"); + die(); + } + + if (file_exists($_SERVER['DOCUMENT_ROOT'] . "/includes/tokens/" . str_replace(".", "", str_replace("/", "", $_COOKIE['MMSP_SESSION_TOKEN'])))) { + $_PROFILE = json_decode(file_get_contents($_SERVER['DOCUMENT_ROOT'] . "/includes/tokens/" . str_replace(".", "", str_replace("/", "", $_COOKIE['MMSP_SESSION_TOKEN']))), true); + + $_USER = $_PROFILE['login']; + $_SUID = $_PROFILE['login']; + $_FULLNAME = $_PROFILE['name']; + } else { + header("Location: /explore"); + die(); + } +} else { + header("Location: /explore"); + die(); +}
\ No newline at end of file |