Merge pull request fossar#355 from zajad/patch-1

SSilence · SSilence · commit cc8e2e2b22c7 · 2013-06-01T09:03:29.000-07:00
Update Authentication.php
diff --git a/helpers/Authentication.php b/helpers/Authentication.php
@@ -30,8 +30,16 @@ class Authentication {
      * start session and check login
      */
     public function __construct() {
+        
+        // check for SSL proxy and special cookie options
+    	if(isset($_SERVER['HTTP_X_FORWARDED_SERVER'])) {
+  			// set cookie details (http://php.net/manual/en/function.setcookie.php)
+  			// expire, path, domain, secure, httponly
+        	session_set_cookie_params((3600*24*30), '/'.$_SERVER['SERVER_NAME'].preg_replace('/\/[^\/]+$/','',$_SERVER['PHP_SELF']).'/', $_SERVER['HTTP_X_FORWARDED_SERVER'], "true", "true");
+  		} else {
         // session cookie will be valid for one month
         session_set_cookie_params((3600*24*30), "/");
+        }
         
         session_name();
         if(session_id()=="")
@@ -117,4 +125,4 @@ public function logout() {
         $_SESSION['loggedin'] = false;
         session_destroy();
     }
-}
+}
