edited session duration and change log

CHANGELOG.md

@@ -1,5 +1,30 @@
 # Changelog
-
+*************************
+## [1.0.5]
+- added secure password storage 
+- modified admin setting.php 
+- fixed meta  keyword error 
+- added proper session redirections 
+- fixed csrf bugs (```add.php, user/setting.php```)
+- added server side validation 
+- added limited session duration(10 d)
+****************************
+## [1.0.4]
+- added setting logic and page for normal users 
+**************************
+## [1.0.3]
+### fixed 
+- fixed stored xss
+### affected files 
+- profile.php
+- home.php
+### changed files 
+- signup.php
+- admin/atask/add.php
+- admin/atask/setting.php
+- setting.php
+
+*****************************
 ## [1.0.2]
 ### Fixed
 - fixed idor bug in updatels.php 
@@ -17,7 +42,7 @@
  ### feature added 
  added adminlogin link to login navigation bar  
 
-***************
+***********************************
 
  ## [1.0.1] - Bug Fixes
 ### Fixed
@@ -29,7 +54,7 @@
 - social-media-skeleton/admin/login.php
 - social-media-skeleton/tasks/updatels.php
 
-*********************
+****************************************
 
 ## [1.0.0] - Initial Commit
 - [https://github.com/fobybus/social-media-skeleton] Add the initial version of the Social Media Skeleton application.

admin/login.php

@@ -31,7 +31,7 @@
     $_SESSION["aid"]=$id;
     $_SESSION["password"]=$pass;
     $_SESSION["salt"]=$salt;
-    $_SESSION["exp_time"]=time()+(10);
+    $_SESSION["exp_time"]=time()+(60*60*24*10);
    header("location:home.php");
   } else {
     echo "<p style='color:red;text-align:center;font-size:20px;'> incorrect password   </p>";

login.php

@@ -51,7 +51,7 @@
   $_SESSION["edu"]=$edu;
   $_SESSION["joined"]=$joined;
   $_SESSION["salt"]=$salt;
-  $_SESSION["exp_time"]=time()+(10);
+  $_SESSION["exp_time"]=time()+(60*60*24*10);
   ////////////////////////////
   //update last seen
   ////////////////////////////