mirror of
https://github.com/postfixadmin/postfixadmin.git
synced 2024-09-20 03:36:20 +02:00
do not lose login error for users/ - see https://github.com/postfixadmin/postfixadmin/issues/420
This commit is contained in:
parent
2060422d9a
commit
24eb45be92
@ -35,6 +35,8 @@ $smarty->configureTheme('../');
|
||||
|
||||
check_db_version(); # check if the database layout is up to date (and error out if not)
|
||||
|
||||
$error = null;
|
||||
|
||||
if ($_SERVER['REQUEST_METHOD'] == "POST") {
|
||||
if (safepost('token') != $_SESSION['PFA_token']) {
|
||||
die('Invalid token!');
|
||||
@ -57,15 +59,18 @@ if ($_SERVER['REQUEST_METHOD'] == "POST") {
|
||||
exit;
|
||||
} else {
|
||||
error_log("PostfixAdmin user login failed (username: $fUsername)");
|
||||
flash_error($PALANG['pLogin_failed']);
|
||||
$error = $PALANG['pLogin_failed'];
|
||||
}
|
||||
}
|
||||
|
||||
|
||||
session_unset();
|
||||
session_destroy();
|
||||
session_start();
|
||||
|
||||
if($error) {
|
||||
flash_error($error);
|
||||
}
|
||||
|
||||
$_SESSION['PFA_token'] = md5(uniqid('pfa' . rand(), true));
|
||||
|
||||
$smarty->assign('language_selector', language_selector(), false);
|
||||
|
Loading…
Reference in New Issue
Block a user