summaryrefslogtreecommitdiff
path: root/roundcubemail/program/include/rcube.php
diff options
context:
space:
mode:
authorthomasb <thomasb@208e9e7b-5314-0410-a742-e7e81cd9613c>2012-04-30 21:04:53 +0000
committerthomasb <thomasb@208e9e7b-5314-0410-a742-e7e81cd9613c>2012-04-30 21:04:53 +0000
commit8fffbcdaca75ebdcbc913e915036000fa9ec3d8d (patch)
tree3a4dd63ba2e92a906a1ec63c69e61fbb38f334c1 /roundcubemail/program/include/rcube.php
parent507258347247bd15ce48de03c96622709286266f (diff)
Accept two past time slots for auth cookie validation; don't encode user-agent into session auth hash (#1488449)
git-svn-id: https://svn.roundcube.net/trunk@6134 208e9e7b-5314-0410-a742-e7e81cd9613c
Diffstat (limited to 'roundcubemail/program/include/rcube.php')
-rw-r--r--roundcubemail/program/include/rcube.php2
1 files changed, 1 insertions, 1 deletions
diff --git a/roundcubemail/program/include/rcube.php b/roundcubemail/program/include/rcube.php
index 55dc4ee77..8bd9b76be 100644
--- a/roundcubemail/program/include/rcube.php
+++ b/roundcubemail/program/include/rcube.php
@@ -476,7 +476,7 @@ class rcube
$this->session->set_keep_alive($keep_alive);
}
- $this->session->set_secret($this->config->get('des_key') . $_SERVER['HTTP_USER_AGENT']);
+ $this->session->set_secret($this->config->get('des_key') . dirname($_SERVER['SCRIPT_NAME']));
$this->session->set_ip_check($this->config->get('ip_check'));
}
generated by cgit v1.2.3 (git 2.51.0) at 2026-05-15 22:21:52 +0000