Skip to content
This repository
Browse code

cfg.check_session_hijack bugfix 2

  • Loading branch information...
commit da87654ec9adb438f5576f59a3c52c888ff2262a 1 parent ea9cf3e
kaven276 authored

Showing 1 changed file with 4 additions and 5 deletions. Show diff stats Hide diff stats

  1. +4 5 lib/psp.web.js
9 lib/psp.web.js
@@ -129,11 +129,10 @@ function pspdweb(req, res, next){
129 129 stat.reqCnt++;
130 130 normalReq = true;
131 131 cookies = parseCookie(req);
132   - if (cfg.check_session_hijack) {
133   - if (ensureSID() === false) {
134   - return;
135   - }
  132 + if (ensureSID() === false) {
  133 + return;
136 134 }
  135 +
137 136 DBInMgr.findFreeOraSockThen(reqUrl, req.connection, function(c, br){
138 137 if (c) {
139 138 oraSock = c;
@@ -179,7 +178,7 @@ function pspdweb(req, res, next){
179 178 delete cookies['GUARD' + port];
180 179 ohdr['Set-Cookie'] = setCookies;
181 180
182   - if (bsid) {
  181 + if (bsid && cfg.check_session_hijack) {
183 182 try {
184 183 if (newGuard = mGuard.checkUpdate(host, bsid, guard, rb.caddr)) {
185 184 writeHead = bakRes.writeHead;

0 comments on commit da87654

Please sign in to comment.
Something went wrong with that request. Please try again.