Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- kod spusteny na kazdej stranke
- public function validateToken($session = false){
- if(!$session)
- $session = $this->userdata;
- if(get_cookie("ms_user_token")){
- $data['securitytoken'] = get_cookie("ms_user_token");
- $memory = $this->sqlValidateToken($data);
- if($memory[0]){
- if($this->hashToken($memory[0]->salt, $memory[0]->securitytoken) == get_cookie("ms_hashed_token")){
- //if(!$this->CI->session->get_userdata('logged_in')){
- $this->CI->session->sess_expiration = 60*60*24*7;
- $this->CI->session->set_userdata('logged_in', $memory[0]);
- //}
- }else{
- $this->logout();
- }
- }else{
- $this->logout();
- }
- }else{
- $this->CI->session->unset_userdata('logged_in');
- @session_destroy();
- delete_cookie('ms_user_token');
- delete_cookie('ms_hashed_token');
- }
- }
- login ...
- $securitytoken = $this->customfunc->generateRandomString(16);
- $salt = $this->customfunc->generateRandomString(16);
- $hash = $this->User_model->hashToken($salt, $securitytoken);
- $tcookie = array(
- 'name' => 'ms_user_token',
- 'value' => $securitytoken,
- 'expire' => time()+86500,
- //'domain' => '',
- 'path' => '/',
- 'prefix' => 'ms_',
- );
- $scookie = array(
- 'name' => 'hashed_token',
- 'value' => $hash,
- 'expire' => time()+86500,
- //'domain' => '',
- 'path' => '/',
- 'prefix' => 'ms_',
- );
- set_cookie($tcookie);
- set_cookie($scookie);
- $this->session->sess_expiration = 60*60*24*7;
- $this->session->set_userdata('logged_in', $sess_array);//nejake data
- public function hashToken($salt, $securitytoken){
- return hash("sha256", $salt.$_SERVER['REMOTE_ADDR'].$securitytoken.$config["globalSalt"]);
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
