Subversion Repositories cheapmusic

Rev

Rev 121 | Rev 153 | Go to most recent revision | Show entire file | Ignore whitespace | Details | Blame | Last modification | View Log | RSS feed

Rev 121 Rev 122
Line 3... Line 3...
3 
 
 3 
 
4 
if (isset($_POST["target"])) {
 4 
if (isset($_POST["target"])) {
5 
    include_once ($_SERVER['DOCUMENT_ROOT'] . '/php/constants.php');
 5 
    include_once ($_SERVER['DOCUMENT_ROOT'] . '/php/constants.php');
6 
    include_once ($_SERVER['DOCUMENT_ROOT'] . '/php/sessions_db.php');
 6 
    include_once ($_SERVER['DOCUMENT_ROOT'] . '/php/sessions_db.php');
7 
    include_once ($_SERVER['DOCUMENT_ROOT'] . '/php/cryptor.php');
 7 
    include_once ($_SERVER['DOCUMENT_ROOT'] . '/php/cryptor.php');
- 
 
 8 
    include_once ("php/NonceUtil.php");
8 
 
 9 
 
9 
    $configFile = parse_ini_file($_SERVER['DOCUMENT_ROOT'] . FCM_CONFIGFILE, true);
 10 
    $configFile = parse_ini_file($_SERVER['DOCUMENT_ROOT'] . FCM_CONFIGFILE, true);
10 
    $crypt = Cryptor::getInstance($configFile['cryptor']);
 11 
    $crypt = Cryptor::getInstance($configFile['cryptor']);
11 
    $tmpSessionTab = (isset($_POST["sessionTab"]) && $_POST["sessionTab"] > 0 ? $_POST["sessionTab"] : null);
 12 
    $tmpSessionTab = (isset($_POST["sessionTab"]) && $_POST["sessionTab"] > 0 ? $_POST["sessionTab"] : null);
12 
    $handler = MySessionHandler::getInstance($tmpSessionTab, $configFile['mysqli']);
 13 
    $handler = MySessionHandler::getInstance($tmpSessionTab, $configFile['mysqli']);
- 
 
 14 
    $systemConf = $configFile['system'];
13 
    unset($configFile);
 15 
    unset($configFile);
14 
 
 16 
 
15 
    session_set_cookie_params(604800, '/', '.findcheapmusic.com', true, true);
 17 
    session_set_cookie_params(604800, '/', '.findcheapmusic.com', true, true);
16 
    session_set_save_handler($handler, true);
 18 
    session_set_save_handler($handler, true);
17 
    if (!empty($_COOKIE['PHPSESSID'])) {
 19 
    if (!empty($_COOKIE['PHPSESSID'])) {
18 
        session_id($_COOKIE['PHPSESSID']);
 20 
        session_id($_COOKIE['PHPSESSID']);
19 
    }
 21 
    }
20 
    @session_start();
 22 
    @session_start();
- 
 
 23 
 
- 
 
 24 
    if (empty($_POST["nonce"]) || NonceUtil::check($systemConf["nonce_secret"], $_POST["nonce"]) === false) {
- 
 
 25 
        exit;
- 
 
 26 
    }
21 
 
 27 
 
22 
    $_sess_db = MySessionHandler::getDBSessionId();
 28 
    $_sess_db = MySessionHandler::getDBSessionId();
23 
 
 29 
 
24 
    $access = mysqli_real_escape_string($_sess_db, time());
 30 
    $access = mysqli_real_escape_string($_sess_db, time());
25 
    $url = mysqli_real_escape_string($_sess_db, base64_decode($_POST["target"]));
 31 
    $url = mysqli_real_escape_string($_sess_db, base64_decode($_POST["target"]));