if (!S::logged()) {
S::set('auth', AUTH_COOKIE);
}
- return User::getSilentWithValues(null, array('user_id' => S::i('auth_by_cookie')));
+ return User::getSilentWithUID(S::i('auth_by_cookie'));
}
S::kill('challenge');
S::logger($uid)->log('auth_ok');
}
- return User::getSilentWithValues(null, array('user_id' => $uid));
+ return User::getSilentWithUID($uid);
}
protected function startSessionAs($user, $level)
{
- if ((!is_null(S::v('user')) && S::v('user')->id() != $user->id())
+ if ((!is_null(S::user()) && S::user()->id() != $user->id())
|| (S::has('uid') && S::i('uid') != $user->id())) {
return false;
} else if (S::has('uid')) {
INNER JOIN watch AS w ON(w.uid = a.uid)
LEFT JOIN forum_profiles AS fp ON(fp.uid = a.uid)
LEFT JOIN gapps_accounts AS g ON(a.uid = g.l_userid AND g.g_status = 'active')
- LEFT JOIN logger.last_sessions AS ls ON (ls.uid = a.uid)
- LEFT JOIN logger.sessions AS s ON(s.id = ls.id)
+ LEFT JOIN #logger#.last_sessions AS ls ON (ls.uid = a.uid)
+ LEFT JOIN #logger#.sessions AS s ON(s.id = ls.id)
WHERE a.uid = {?} AND a.state = 'active'", $user->id());
+ if ($res->numRows() != 1) {
+ return false;
+ }
+
$sess = $res->fetchOneAssoc();
$perms = $sess['perms'];
unset($sess['perms']);
return true;
}
- /** Start a session without authentication data for the given user.
- * This is used to identify the user after his registration, to be
- * removed after rewriting registration procedure.
- * XXX: Temporary
- */
- public function startWeakSession($user)
- {
- if (!$this->startSessionAs($user, AUTH_MDP)) {
- $this->destroy();
- return false;
- }
- S::set('auth', AUTH_MDP);
- return true;
- }
-
private function securityChecks()
{
$mail_subject = array();