AS1024/itflow
1
0
Fork 0
mirror of https://github.com/itflow-org/itflow synced 2026-02-28 02:44:53 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add database structure for 'login key' protection concept

Browse Source
This commit is contained in:
Marcus Hill
2023-05-13 21:49:09 +01:00
parent a79baae2a8
commit 5d6d7e389e
8 changed files with 96 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
post.php
View File

@@ -839,6 +839,22 @@ if(isset($_POST['edit_module_settings'])){
}
if(isset($_POST['edit_security_settings'])){
validateAdminRole();
$config_login_key_required = intval($_POST['config_login_key_required']);
$config_login_key_secret = sanitizeInput($_POST['config_login_key_secret']);
mysqli_query($mysqli,"UPDATE settings SET config_login_key_required = '$config_login_key_required', config_login_key_secret = '$config_login_key_secret' WHERE company_id = 1");
// Logging
mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'Settings', log_action = 'Modify', log_description = '$session_name modified login key settings', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_user_id = $session_user_id");
$_SESSION['alert_message'] = "Login key settings updated";
header("Location: " . $_SERVER["HTTP_REFERER"]);
}
if(isset($_POST['edit_telemetry_settings'])){
validateAdminRole();
@@ -9280,7 +9296,7 @@ if(isset($_GET['logout'])){
session_unset();
session_destroy();
header('Location: login.php');
header('Location: login.php?key=' . $config_login_key_secret);
}
?>