- Timestamp:
- 06/09/10 11:26:44 (14 years ago)
- Location:
- branches/2.0
- Files:
-
- 2 edited
Legend:
- Unmodified
- Added
- Removed
-
branches/2.0/header.session.inc.php
r2885 r2911 9 9 $user_agent = array(); 10 10 if (isset($GLOBALS['phpgw']) && !isset($_SESSION['connection_db_info'])){ 11 $_SESSION['phpgw_info']['admin']['server']['sessions_checkip'] = $GLOBALS['phpgw_info']['server']['sessions_checkip']; 11 12 if($GLOBALS['phpgw_info']['server']['use_https'] == 1) { 12 13 $new_ip = (isset($_SERVER['HTTP_X_FORWARDED_FOR']) ? $_SERVER['HTTP_X_FORWARDED_FOR']."," : ""). $_SERVER['REMOTE_ADDR']; 13 14 $GLOBALS['phpgw']->db->query("UPDATE phpgw_access_log SET ip='$new_ip' WHERE account_id <> 0 and lo = 0 and sessionid='{$GLOBALS['sessionid']}'",__LINE__,__FILE__); 14 15 } 15 $GLOBALS['phpgw']->db->query("select trim(sessionid), ip,browser from phpgw_access_log where account_id <> 0 and lo = 0 and sessionid='{$GLOBALS['sessionid']}' limit 1",__LINE__,__FILE__);16 $GLOBALS['phpgw']->db->query("select trim(sessionid),".($_SESSION['phpgw_info']['admin']['server']['sessions_checkip'] ? "ip," : "")."browser from phpgw_access_log where account_id <> 0 and lo = 0 and sessionid='{$GLOBALS['sessionid']}' limit 1",__LINE__,__FILE__); 16 17 $GLOBALS['phpgw']->db->next_record(); 17 18 if($GLOBALS['phpgw']->db->row( )) … … 22 23 $http_user_agent = substr($_SERVER[ 'HTTP_USER_AGENT' ],0,199); 23 24 $user_ip = isset($_SERVER['HTTP_X_FORWARDED_FOR']) ? array($_SERVER['REMOTE_ADDR'], $_SERVER['HTTP_X_FORWARDED_FOR']) : array($_SERVER['REMOTE_ADDR']); 24 $user_agent[] = "{$sess['session_id']}{$user_ip[0]}".$http_user_agent;25 $user_agent[] = ($_SESSION['phpgw_info']['admin']['server']['sessions_checkip'] ? "{$sess['session_id']}{$user_ip[0]}" : "{$sess['session_id']}").$http_user_agent; 25 26 if(count($user_ip) == 2) { 26 27 $user_agent[] = "{$sess['session_id']}{$user_ip[1]}".$http_user_agent; -
branches/2.0/phpgwapi/inc/class.sessions.inc.php
r2850 r2911 343 343 } 344 344 345 /* ExpressoLivre346 Necessário comentar para que o redirecionamento de uma sessão347 https para uma http funcionasse atrás de um proxy348 */349 350 /*351 if (@$GLOBALS['phpgw_info']['server']['sessions_checkip'])352 {353 if((PHP_OS != 'Windows') && (PHP_OS != 'WINNT') &&354 (!$GLOBALS['phpgw_info']['user']['session_ip'] || $GLOBALS['phpgw_info']['user']['session_ip'] != $this->getuser_ip())355 )356 {357 //echo "IP do cliente com https ----> ".$GLOBALS['phpgw_info']['user']['session_ip'];358 //echo "<BR>IP do cliente com http ----> ".$this->getuser_ip();359 if(is_object($GLOBALS['phpgw']->log))360 {361 // This needs some better wording362 $GLOBALS['phpgw']->log->message(array(363 'text' => 'W-VerifySession, IP %1 doesn\'t match IP %2 in session table',364 'p1' => $this->getuser_ip(),365 'p2' => $GLOBALS['phpgw_info']['user']['session_ip'],366 'line' => __LINE__,367 'file' => __FILE__368 ));369 $GLOBALS['phpgw']->log->commit();370 }371 return False;372 }373 }374 */375 376 345 $GLOBALS['phpgw']->acl->acl($this->account_id); 377 346 $GLOBALS['phpgw']->accounts->accounts($this->account_id);
Note: See TracChangeset
for help on using the changeset viewer.