From a90cde48af2bc5bcdd2fb6d53704a8cf9931f52f Mon Sep 17 00:00:00 2001
From: Florent Bruneau <florent.bruneau@polytechnique.org>
Date: Sun, 10 Aug 2008 21:33:59 +0200
Subject: [PATCH] Don't kill the authentication cookie the first time we use
 it.

Signed-off-by: Florent Bruneau <florent.bruneau@polytechnique.org>
---
 classes/xorgsession.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/classes/xorgsession.php b/classes/xorgsession.php
index 48a2664..229df76 100644
--- a/classes/xorgsession.php
+++ b/classes/xorgsession.php
@@ -222,7 +222,8 @@ class XorgSession extends PlSession
         } else {
             $logger = S::logger($uid);
             setcookie('ORGuid', $uid, (time() + 25920000), '/', '', 0);
-            if (Post::v('remember', 'false') == 'true') {
+
+            if (S::i('auth_by_cookie') == S::i('uid') || Post::v('remember', 'false') == 'true') {
                 $cookie = hash_encrypt($sess['password']);
                 setcookie('ORGaccess', $cookie, (time() + 25920000), '/', '', 0);
                 if ($logger) {
-- 
2.1.4