mirror of
https://gitlab.archlinux.org/archlinux/aurweb.git
synced 2025-02-03 10:43:03 +01:00
323d418f02
Wrap mysql_real_escape_string() in a wrapper function db_escape_string() to ease porting to other databases, and as another step to pulling more of the database code into a central location. This is a rebased version of a patch by elij submitted about half a year ago. Thanks-to: elij <elij.mx@gmail.com> Signed-off-by: Lukas Fleischer <archlinux@cryptocrack.de>
24 lines
728 B
PHP
24 lines
728 B
PHP
<?php
|
|
|
|
set_include_path(get_include_path() . PATH_SEPARATOR . '../lib');
|
|
|
|
include_once("aur.inc.php"); # access AUR common functions
|
|
include_once("acctfuncs.inc.php"); # access AUR common functions
|
|
|
|
|
|
# if they've got a cookie, log them out - need to do this before
|
|
# sending any HTML output.
|
|
#
|
|
if (isset($_COOKIE["AURSID"])) {
|
|
$dbh = db_connect();
|
|
$q = "DELETE FROM Sessions WHERE SessionID = '";
|
|
$q.= db_escape_string($_COOKIE["AURSID"]) . "'";
|
|
db_query($q, $dbh);
|
|
# setting expiration to 1 means '1 second after midnight January 1, 1970'
|
|
setcookie("AURSID", "", 1, "/", null, !empty($_SERVER['HTTPS']), true);
|
|
unset($_COOKIE['AURSID']);
|
|
clear_expired_sessions($dbh);
|
|
}
|
|
|
|
header('Location: index.php');
|
|
|