Refs PR #241 Pushing one of the changes, moving regenerateId() higher

matomo-org · May 5, 2014 · 3d26526 · 3d26526
1 parent 8a507b6
commit 3d26526
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/plugins/Login/Auth.php b/plugins/Login/Auth.php
@@ -76,6 +76,8 @@ public function authenticate()
      */
     public function initSession($login, $md5Password, $rememberMe)
     {
+        Session::regenerateId();
+
         $tokenAuth = API::getInstance()->getTokenAuth($login, $md5Password);
 
         $this->setLogin($login);
@@ -97,7 +99,6 @@ public function initSession($login, $md5Password, $rememberMe)
         $cookie->setHttpOnly(true);
         $cookie->save();
 
-        @Session::regenerateId();
 
         // remove password reset entry if it exists
         Login::removePasswordResetInfo($login);