gochan/gochan
1
0
Fork 0
mirror of https://github.com/Eggbertx/gochan.git synced 2025-08-17 10:56:24 -07:00
Code Releases Activity

Fix the manage cookies to use Host header as well

Browse source
This commit is contained in:
Darren VanBuren 2017-08-01 00:37:23 -07:00
parent b47a3a7666
commit 9503f989ca
1 changed files with 3 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

5
src/manage.go
View file

@ -120,7 +120,8 @@ func getStaffRank() int {
}
func createSession(key string, username string, password string, request *http.Request, writer *http.ResponseWriter) int {
//returs 0 for successful, 1 for password mismatch, and 2 for other
//returns 0 for successful, 1 for password mismatch, and 2 for other
domain := request.Host
if !validReferrer(*request) {
mod_log.Print("Rejected login from possible spambot @ : " + request.RemoteAddr)
@ -139,7 +140,7 @@ func createSession(key string, username string, password string, request *http.R
return 1
} else {
// successful login
cookie := &http.Cookie{Name: "sessiondata", Value: key, Path: "/", Domain: config.SiteDomain, RawExpires: getSpecificSQLDateTime(time.Now().Add(time.Duration(time.Hour * 2))), MaxAge: 7200}
cookie := &http.Cookie{Name: "sessiondata", Value: key, Path: "/", Domain: domain, RawExpires: getSpecificSQLDateTime(time.Now().Add(time.Duration(time.Hour * 2))), MaxAge: 7200}
// cookie := &http.Cookie{Name: "sessiondata", Value: key, Path: "/", Domain: config.Domain, RawExpires: getSpecificSQLDateTime(time.Now().Add(time.Duration(time.Hour*2))),MaxAge: 7200}
http.SetCookie(*writer, cookie)
_, err := db.Exec("INSERT INTO `" + config.DBprefix + "sessions` (`key`, `data`, `expires`) VALUES('" + key + "','" + username + "', '" + getSpecificSQLDateTime(time.Now().Add(time.Duration(time.Hour*2))) + "');")