Browse files

Also check referer on logout action

  • Loading branch information...
1 parent a77cf22 commit de62f02eed97d533ab9cf187c80125297e025065 @thomascube thomascube committed Feb 8, 2011
Showing with 2 additions and 2 deletions.
  1. +2 −2 index.php
View
4 index.php
@@ -133,8 +133,8 @@
}
}
-// end session
-else if ($RCMAIL->task == 'logout' && isset($_SESSION['user_id'])) {
+// end session (after optional referer check)
+else if ($RCMAIL->task == 'logout' && isset($_SESSION['user_id']) && (!$RCMAIL->config->get('referer_check') || rcube_check_referer())) {
$userdata = array('user' => $_SESSION['username'], 'host' => $_SESSION['imap_host'], 'lang' => $RCMAIL->user->language);
$OUTPUT->show_message('loggedout');
$RCMAIL->logout_actions();

0 comments on commit de62f02

Please sign in to comment.