admin/39496-vm
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

update users login

Browse Source
This commit is contained in:
Flatlogic Bot 2026-04-08 06:36:38 +00:00
parent 94393c7a54
commit da6711e592
4 changed files with 18 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
cookie.txt Normal file
View File

@ -0,0 +1,5 @@
# Netscape HTTP Cookie File
# https://curl.se/docs/http-cookies.html
# This file was generated by libcurl! Edit at your own risk.
127.0.0.1 FALSE / FALSE 0 PHPSESSID 69opohn4d8347kh0d07rl59f2n

5
includes/app.php
View File

@ -5,6 +5,11 @@ if (session_status() === PHP_SESSION_NONE) {
session_start(); session_start();
} }
// Prevent browser caching globally
header('Cache-Control: no-store, no-cache, must-revalidate, max-age=0');
header('Cache-Control: post-check=0, pre-check=0', false);
header('Pragma: no-cache');
require_once __DIR__ . '/../db/config.php'; require_once __DIR__ . '/../db/config.php';
function h(?string $value): string function h(?string $value): string

3
includes/auth.php
View File

@ -6,6 +6,9 @@ function require_login() {
header('Location: login.php'); header('Location: login.php');
exit; exit;
} }
header('Cache-Control: no-store, no-cache, must-revalidate, max-age=0');
header('Cache-Control: post-check=0, pre-check=0', false);
header('Pragma: no-cache');
} }
function get_logged_in_user() { function get_logged_in_user() {

6
login.php
View File

@ -19,7 +19,11 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') {
if ($user && password_verify($password, $user['password'])) { if ($user && password_verify($password, $user['password'])) {
$_SESSION['user_id'] = $user['id']; $_SESSION['user_id'] = $user['id'];
$_SESSION['user_role'] = $user['role']; $_SESSION['user_role'] = $user['role'];
header('Location: admin.php'); if ($user['role'] === 'admin' || !empty($user['role_id'])) {
header('Location: admin.php');
} else {
header('Location: index.php');
}
exit; exit;
} else { } else {
$error = t('Invalid email or password.', 'البريد الإلكتروني أو كلمة المرور غير صحيحة.'); $error = t('Invalid email or password.', 'البريد الإلكتروني أو كلمة المرور غير صحيحة.');