modifide ds-apollon 20140219

author masashi <masashi@home.ms-n.com>

Wed, 19 Feb 2014 10:05:41 +0000 (19:05 +0900)

committer masashi <masashi@home.ms-n.com>

Wed, 19 Feb 2014 10:05:41 +0000 (19:05 +0900)
author masashi <masashi@home.ms-n.com>
Wed, 19 Feb 2014 10:05:41 +0000 (19:05 +0900)
committer masashi <masashi@home.ms-n.com>
Wed, 19 Feb 2014 10:05:41 +0000 (19:05 +0900)
diff --git a/ds-apollon/include/php/session_check.inc b/ds-apollon/include/php/session_check.inc

index d71fdab..62e6bd5 100644 (file)
--- a/ds-apollon/include/php/session_check.inc
+++ b/ds-apollon/include/php/session_check.inc
@@ -10,33 +10,47 @@ if(empty($_SESSION['count'])) {
  
     }
  else{
-   $seed = $login_name . $pass_word . $_SESSION['session_time']; 
-   if(0 == strcmp($_SESSION['session_data'], md5($seed))){
+   if(0 == strcmp($_SESSION['session_data'], md5(($login_name . $pass_word . $_SESSION['session_time'])))){
        $_SESSION['count']++;
        $_session = 1;
        }
     else{
        printf("------ warning session check = session data is differ -----<br>\n");
+
+      $_SESSION = array();
+      if (ini_get("session.use_cookies")) {
+         $params = session_get_cookie_params();
+         setcookie(session_name(), '', time() - 42000, $params["path"], $params["domain"], $params["secure"], $params["httponly"]);
+         }
+      session_destroy();
+
        $_session = 0;
        }
  
-   $nowtime = time();
-   $difftime = $nowtime - $_SESSION['session_time'];
-   if($difftime < 3600 ){
+   if(((int)(time()) - $_SESSION['session_val']) < 6400 ){
+      $_SESSION['session_val'] = time();
        $_SESSION['count']++;
        $_session = 1;
        }
     else{
        printf("------ warning session check = session timed out -----<br>\n");
+
+      $_SESSION = array();
+      if (ini_get("session.use_cookies")) {
+         $params = session_get_cookie_params();
+         setcookie(session_name(), '', time() - 42000, $params["path"], $params["domain"], $params["secure"], $params["httponly"]);
+         }
+      session_destroy();
+
        $_session = 0;
        }
  
     printf("======= check session count %s ========<br>\n", $_SESSION['count']);
     printf("======= check session md5 OK %s ========<br>\n", $_SESSION['session_data']);
-   printf("======= check mow md5 OK %s ========<br>\n", md5($seed));
-   printf("======= check now time %s session start time %s  diff= %s =====<br>\n", $nowtime, $_SESSION['session_time'], $difftime);
     printf("======= check session _session OK %s ========<br>\n", $_session);
+   printf("======= check session_time = %s, session_val = %s ========<br>\n", $_SESSION['session_time'], $_SESSION['session_val']);
     }
  
  ?>
  
+
diff --git a/ds-apollon/include/php/session_destroy.inc b/ds-apollon/include/php/session_destroy.inc

index 8c6f760..be4c45c 100644 (file)
--- a/ds-apollon/include/php/session_destroy.inc
+++ b/ds-apollon/include/php/session_destroy.inc
@@ -2,11 +2,8 @@
  
  session_start();
  
-// セッション変数を全て解除する
  $_SESSION = array();
  
-// セッションを切断するにはセッションクッキーも削除する。
-// Note: セッション情報だけでなくセッションを破壊する。
  if (ini_get("session.use_cookies")) {
      $params = session_get_cookie_params();
      setcookie(session_name(), '', time() - 42000,
@@ -15,7 +12,6 @@ if (ini_get("session.use_cookies")) {
      );
  }
  
-// 最終的に、セッションを破壊する
  session_destroy();
  
  $_session = 0;
diff --git a/ds-apollon/include/php/session_start.inc b/ds-apollon/include/php/session_start.inc

index 56d8eb0..d5752d9 100644 (file)
--- a/ds-apollon/include/php/session_start.inc
+++ b/ds-apollon/include/php/session_start.inc
@@ -5,8 +5,9 @@ session_start();
  if(empty($_SESSION['count'])) {
  
     $_SESSION['session_time'] = time();
-   $seed = $login_name . $pass_word . $_SESSION['session_time']; 
-   $_SESSION['session_data'] = md5($seed);
+   $_SESSION['session_val'] = time();
+
+   $_SESSION['session_data'] = md5(($login_name . $pass_word . $_SESSION['session_time']));
  
     $_SESSION['count'] = 1;
     $_session = 1;
diff --git a/ds-apollon/index.php b/ds-apollon/index.php

index ceddbff..b061d60 100644 (file)
--- a/ds-apollon/index.php
+++ b/ds-apollon/index.php
@@ -28,7 +28,7 @@ if( $set == 0 ){
  
  // --- set1 認証確認 ---
  else if( $set == 1 ){
-   if(0 == strcmp("masashi@ms-n.com", $login_name) && 0 == strcmp("yukiko1919", $pass_word)){    // はじめの認証設定
+   if(0 == strcmp("masashi@ms-n.com", $login_name) && 0 == strcmp("1234567890", $pass_word)){    // はじめの認証設定
        include './include/php/session_start.inc';                // セッション 開始処理
        $set = 3;
        include './include/html/html_list.inc';                   // ログイン完了画面に飛ぶ
author	masashi <masashi@home.ms-n.com>
	Wed, 19 Feb 2014 10:05:41 +0000 (19:05 +0900)
committer	masashi <masashi@home.ms-n.com>
	Wed, 19 Feb 2014 10:05:41 +0000 (19:05 +0900)
ds-apollon/include/php/session_check.inc		patch \| blob \| history
ds-apollon/include/php/session_destroy.inc		patch \| blob \| history
ds-apollon/include/php/session_start.inc		patch \| blob \| history
ds-apollon/index.php		patch \| blob \| history