Joost
/
pics
forked from Public/pics
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
399 Commits 6 Branches 3 Tags 5.2 MiB
Commit Graph

5 Commits

Author SHA1 Message Date
Aaron van Geffen 65ee07d95b Session: centralise how session tokens are handled 2023-11-20 20:59:35 +01:00
Aaron van Geffen 5f778d73b4 Session: remove checks for matching IP address and user agent 
This was considered good practice in the days before always-on https,
but is considered superfluous today. It even gets in the way of IPv6
privacy extensions, which is the main argument for removing them today.
 2023-11-20 20:58:20 +01:00
Aaron van Geffen a208c0482f Invoke Dispatcher::kickGuest from Session for invalid sessions. 
Previously, a NotAllowedException would be thrown if an invalid session
was encountered. However, these exceptions were not caught, and hence
would yield a fatal uncaught exception error.

At this point in Kabuki, the ErrorHandler class has not been registered yet
for error handling purposes. This error is therefore not visible if the PHP
ini directive 'display_errors' is set to 'Off'. As this is the default
production value, the script would fail with a blank page in such cases.
 2020-03-11 22:38:15 +01:00
Aaron van Geffen 29030eade6 Tackle session errors through UserFacingException. 2017-11-09 17:00:34 +01:00
Aaron van Geffen ab0e4efbcb Initial commit. 
This is to be the new HashRU website based on the Aaronweb.net/Kabuki CMS.
 2017-11-09 17:00:22 +01:00