Don't rely on rcmail->task for session error check; use _REQUEST data instead

git-svn-id: https://svn.roundcube.net/trunk@5117 208e9e7b-5314-0410-a742-e7e81cd9613c
author: thomasb <thomasb@208e9e7b-5314-0410-a742-e7e81cd9613c> 2011-08-24 08:39:23 +0000
committer: thomasb <thomasb@208e9e7b-5314-0410-a742-e7e81cd9613c> 2011-08-24 08:39:23 +0000
commit: f4087778e20ac513ec4648e062d96a54c2cebdf6 (patch)
tree: a6943dfe95dfedb702c4f40dbcdf05911b1321bd /roundcubemail/index.php
parent: f1cfed2132cc1db11af4dea4f6b5b2bad9a4323b (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/roundcubemail/index.php b/roundcubemail/index.php
index 001e6f5c9..e5a5ee0aa 100644
--- a/roundcubemail/index.php
+++ b/roundcubemail/index.php
@@ -155,7 +155,7 @@ else if ($RCMAIL->task != 'login' && $_SESSION['user_id'] && $RCMAIL->action !=
 // not logged in -> show login page
 if (empty($RCMAIL->user->ID)) {
   // log session failures
-  if ($RCMAIL->task != 'login' && $RCMAIL->task != 'logout' && !$session_error && ($sess_id = $_COOKIE[ini_get('session.name')])) {
+  if (!in_array(get_input_value('_task', RCUBE_INPUT_GPC), array('login','logout')) && !$session_error && ($sess_id = $_COOKIE[ini_get('session.name')])) {
     $RCMAIL->session->log("Aborted session " . $sess_id . "; no valid session data found");
     $session_error = true;
   }
author	thomasb <thomasb@208e9e7b-5314-0410-a742-e7e81cd9613c>	2011-08-24 08:39:23 +0000
committer	thomasb <thomasb@208e9e7b-5314-0410-a742-e7e81cd9613c>	2011-08-24 08:39:23 +0000
commit	f4087778e20ac513ec4648e062d96a54c2cebdf6 (patch)
tree	a6943dfe95dfedb702c4f40dbcdf05911b1321bd /roundcubemail/index.php
parent	f1cfed2132cc1db11af4dea4f6b5b2bad9a4323b (diff)