svn commit: r263802 - user/des/fbce/lib/FBCE/Controller
Dag-Erling Smørgrav
des at FreeBSD.org
Thu Mar 27 08:44:34 UTC 2014
Author: des
Date: Thu Mar 27 08:44:33 2014
New Revision: 263802
URL: http://svnweb.freebsd.org/changeset/base/263802
Log:
Plug potential session fixation hole
Modified:
user/des/fbce/lib/FBCE/Controller/Root.pm
Modified: user/des/fbce/lib/FBCE/Controller/Root.pm
==============================================================================
--- user/des/fbce/lib/FBCE/Controller/Root.pm Thu Mar 27 07:06:29 2014 (r263801)
+++ user/des/fbce/lib/FBCE/Controller/Root.pm Thu Mar 27 08:44:33 2014 (r263802)
@@ -75,6 +75,7 @@ sub login :Local :Args(0) {
});
}
if ($c->user_exists) {
+ $c->change_session_id();
if ($action) {
$c->response->redirect($action);
} else {
More information about the svn-src-user
mailing list