From c3397a2c73273ba5414d976ab7f45ae5e71a8a33 Mon Sep 17 00:00:00 2001
From: nikrou <nikrou@piwigo.org>
Date: Sun, 15 Jan 2006 13:45:42 +0000
Subject: Improve security of sessions: - use only cookies to store session id
 on client side - use default php session system with database handler to
 store sessions on server side

git-svn-id: http://piwigo.org/svn/trunk@1004 68402e56-0260-453c-a942-63ccdbb3a9ee
---
 admin/picture_modify.php | 6 +-----
 1 file changed, 1 insertion(+), 5 deletions(-)

(limited to 'admin/picture_modify.php')

diff --git a/admin/picture_modify.php b/admin/picture_modify.php
index a8fa2b953..097857ec5 100644
--- a/admin/picture_modify.php
+++ b/admin/picture_modify.php
@@ -195,12 +195,10 @@ $template->set_filenames(
 $template->assign_vars(
   array(
     'U_SYNC' =>
-      add_session_id(
         PHPWG_ROOT_PATH.'admin.php?page=picture_modify'.
         '&amp;image_id='.$_GET['image_id'].
         (isset($_GET['cat_id']) ? '&amp;cat_id='.$_GET['cat_id'] : '').
-        '&amp;sync_metadata=1'
-        ),
+        '&amp;sync_metadata=1',
     
     'PATH'=>$row['path'],
     
@@ -230,10 +228,8 @@ $template->assign_vars(
         stripslashes($_POST['description']) : @$row['comment'],
   
     'F_ACTION' =>
-      add_session_id(
         PHPWG_ROOT_PATH.'admin.php'
         .get_query_string_diff(array('sync_metadata'))
-        )
     )
   );
 
-- 
cgit v1.2.3