Improve security of sessions:

- use only cookies to store session id on client side - use default php session system with database handler to store sessions on server side git-svn-id: http://piwigo.org/svn/trunk@1004 68402e56-0260-453c-a942-63ccdbb3a9ee
author: nikrou <nikrou@piwigo.org> 2006-01-15 13:45:42 +0000
committer: nikrou <nikrou@piwigo.org> 2006-01-15 13:45:42 +0000
commit: c3397a2c73273ba5414d976ab7f45ae5e71a8a33 (patch)
tree: e59456bdf40caf57ca5d3586190c3b3f6e8eb463 /admin/picture_modify.php
parent: b223bb495dbfa1611766cdc528c9eb1af56c43e3 (diff)
1 files changed, 1 insertions, 5 deletions
diff --git a/admin/picture_modify.php b/admin/picture_modify.php
index a8fa2b953..097857ec5 100644
--- a/admin/picture_modify.php
+++ b/admin/picture_modify.php
@@ -195,12 +195,10 @@ $template->set_filenames(
 $template->assign_vars(
   array(
     'U_SYNC' =>
-      add_session_id(
         PHPWG_ROOT_PATH.'admin.php?page=picture_modify'.
         '&amp;image_id='.$_GET['image_id'].
         (isset($_GET['cat_id']) ? '&amp;cat_id='.$_GET['cat_id'] : '').
-        '&amp;sync_metadata=1'
-        ),
+        '&amp;sync_metadata=1',
     
     'PATH'=>$row['path'],
     
@@ -230,10 +228,8 @@ $template->assign_vars(
         stripslashes($_POST['description']) : @$row['comment'],
   
     'F_ACTION' =>
-      add_session_id(
         PHPWG_ROOT_PATH.'admin.php'
         .get_query_string_diff(array('sync_metadata'))
-        )
     )
   );
author	nikrou <nikrou@piwigo.org>	2006-01-15 13:45:42 +0000
committer	nikrou <nikrou@piwigo.org>	2006-01-15 13:45:42 +0000
commit	c3397a2c73273ba5414d976ab7f45ae5e71a8a33 (patch)
tree	e59456bdf40caf57ca5d3586190c3b3f6e8eb463 /admin/picture_modify.php
parent	b223bb495dbfa1611766cdc528c9eb1af56c43e3 (diff)