fix(secu): the ini_set session duration param has been moved in php.i…

…ni (#7896)
centreon · Oct 2, 2019 · 33e3136 · 33e3136
1 parent c6f8309
commit 33e3136
Show file tree

Hide file tree

Showing 2 changed files with 5 additions and 10 deletions.
diff --git a/www/api/internal.php b/www/api/internal.php
@@ -44,11 +44,10 @@
 ini_set('display_errors', 0);
 
 $pearDB = new CentreonDB();
-ini_set("session.gc_maxlifetime", "31536000");
 
 CentreonSession::start(1);
 
-if (false === isset($_SESSION["centreon"])) {
+if (!isset($_SESSION["centreon"])) {
     CentreonWebService::sendResult("Unauthorized", 401);
 }
 
@@ -58,11 +57,10 @@
  * Define Centreon var alias
  */
 if (isset($_SESSION["centreon"])) {
-    $centreon = $_SESSION["centreon"];
-    $oreon = $centreon;
+    $oreon = $centreon = $_SESSION["centreon"];
 }
 
-if (false === isset($centreon) || false === is_object($centreon)) {
+if (!isset($centreon) || !is_object($centreon)) {
     CentreonWebService::sendResult("Unauthorized", 401);
 }
 

diff --git a/www/include/core/header/header.php b/www/include/core/header/header.php
@@ -73,8 +73,6 @@ function microtime_float()
 
 $centreonSession = new CentreonSession();
 
-ini_set("session.gc_maxlifetime", "31536000");
-
 CentreonSession::start();
 
 /*
@@ -136,15 +134,14 @@ function microtime_float()
  * Define Oreon var alias
  */
 if (isset($_SESSION["centreon"])) {
-    $centreon = $_SESSION["centreon"];
-    $oreon = $centreon;
+    $oreon = $centreon = $_SESSION["centreon"];
 }
 if (!isset($centreon) || !is_object($centreon)) {
     exit();
 }
 
 /*
- * Init differents elements we need in a lot of pages
+ * Init different elements we need in a lot of pages
  */
 unset($centreon->Nagioscfg);
 $centreon->initNagiosCFG($pearDB);