Changeset 165

Timestamp:

05/07/07 10:20:06

Author:

grahack

Message:

FAL erase the security code from the db_session just after checking (see #20)

Files:

• FreakAuth/trunk/www/system/application/libraries/FAL_validation.php (modified) (1 diff)

FreakAuth/trunk/www/system/application/libraries/FAL_validation.php

@@ -397 +397 @@
-                $securityCode = $this->CI->db_session->userdata('FreakAuth_security_code');
-                        
+            // erase the code from the session to prevent it to be used a second time
+            // see http://www.ciforge.com/trac/freakauth/ticket/20
+            $this->CI->db_session->unset_userdata('FreakAuth_security_code');
+                        
-                if ($this->CI->config->item('FAL_security_code_case_sensitive')==FALSE)
-                {