Commit Graph

8 Commits

Author SHA1 Message Date
Mathias Kresin
525048bbb2 code cleanup
Add feeds only once to the feed_ids array (feed model), drop now unused select-db action.

Use $_SESSION['loggedin'] in favour of $_SESSION['user'] to reflect which information we do
expect from this session variable. Add nothing else than a flag, which indicates a logged in
user, to $_SESSION['loggedin'].

It's not necessary to know the current user name, since we do only have one user
per database. Same for the language setting. The database defines the front-end language.

Resolves bug where the password gets stored in the $_SESSION['user'] after a remember_me
login.
2015-01-28 05:24:17 +01:00
Frederic Guillot
cd1a0115c2 Minor cleanups 2015-01-17 18:53:40 -05:00
Mathias Kresin
cfd03efc01 Fix database hijacking
Check if a requested database can be selected. Error out if not.
This prevents automatic fallbacks to the default database.

Remove the authorized information from the session if a new database
gets selected.

Factor out logout function to reuse existing code.
2015-01-17 21:14:44 +01:00
Frédéric Guillot
e9685cf6d5 Check if the session username and database username are the same 2014-11-18 19:00:53 -05:00
Frédéric Guillot
7e553f72fd Add RememberMe authentication 2014-05-26 20:47:40 -04:00
Frédéric Guillot
3840a87128 Update to the last version of PicoFeed 2014-05-20 14:20:27 -04:00
Frédéric Guillot
49583f381f Improve files organization 2014-02-08 14:13:14 -05:00
Frédéric Guillot
4fb68b9b80 Split models and controllers in different files 2013-12-22 20:55:53 -05:00