diff options
Diffstat (limited to 'includes/session.php')
-rw-r--r-- | includes/session.php | 19 |
1 files changed, 19 insertions, 0 deletions
diff --git a/includes/session.php b/includes/session.php new file mode 100644 index 0000000..315aeb0 --- /dev/null +++ b/includes/session.php @@ -0,0 +1,19 @@ +<?php + +if (!isset($_COOKIE["booru_auth"])) { + header("Location: /login"); + die(); +} else { + if (str_contains($_COOKIE['booru_auth'], ".") || str_contains($_COOKIE['booru_auth'], "/") || trim($_COOKIE["booru_auth"]) === "") { + header("Location: /login"); + die(); + } + + if (!file_exists($_SERVER['DOCUMENT_ROOT'] . "/includes/data/tokens/" . str_replace(".", "", str_replace("/", "", $_COOKIE['booru_auth'])))) { + header("Location: /login"); + die(); + } +} + +global $userName; +$userName = json_decode(file_get_contents($_SERVER['DOCUMENT_ROOT'] . "/includes/data/tokens/" . str_replace(".", "", str_replace("/", "", $_COOKIE['booru_auth']))), true)["user"];
\ No newline at end of file |