stas            Wed May 16 01:18:14 2007 UTC

  Modified files:              (Branch: PHP_5_2)
    /php-src/ext/session        session.c 
  Log:
  do not send cookie when session is passed in URL, same as it happens with 
GET/POST
  
  
http://cvs.php.net/viewvc.cgi/php-src/ext/session/session.c?r1=1.417.2.8.2.33&r2=1.417.2.8.2.34&diff_format=u
Index: php-src/ext/session/session.c
diff -u php-src/ext/session/session.c:1.417.2.8.2.33 
php-src/ext/session/session.c:1.417.2.8.2.34
--- php-src/ext/session/session.c:1.417.2.8.2.33        Wed Apr  4 19:52:19 2007
+++ php-src/ext/session/session.c       Wed May 16 01:18:14 2007
@@ -17,7 +17,7 @@
    +----------------------------------------------------------------------+
  */
 
-/* $Id: session.c,v 1.417.2.8.2.33 2007/04/04 19:52:19 tony2001 Exp $ */
+/* $Id: session.c,v 1.417.2.8.2.34 2007/05/16 01:18:14 stas Exp $ */
 
 #ifdef HAVE_CONFIG_H
 #include "config.h"
@@ -1283,8 +1283,11 @@
                char *q;
 
                p += lensess + 1;
-               if ((q = strpbrk(p, "/?\\")))
+               if ((q = strpbrk(p, "/?\\"))) {
                        PS(id) = estrndup(p, q - p);
+                       PS(send_cookie) = 0;
+               }
+
        }
 
        /* check whether the current request was referred to by

-- 
PHP CVS Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to