Extend session information to allow extra security when accessing private content. Use nginx auth_request to secure storage area from unmanaged use.

author: lsces <lester@lsces.co.uk> 2026-04-16 11:29:15 +0100
committer: lsces <lester@lsces.co.uk> 2026-04-16 11:29:15 +0100
commit: e0020d728d54bd97ced9df34a38ef9c39e05ff48 (patch)
tree: 5c251f526d7da82897df8e89a3ca5b309fdb2808
parent: d3e19806bc94db461992d31207987bedf28ba765 (diff)
download: users-e0020d728d54bd97ced9df34a38ef9c39e05ff48.tar.gz
users-e0020d728d54bd97ced9df34a38ef9c39e05ff48.tar.bz2
users-e0020d728d54bd97ced9df34a38ef9c39e05ff48.zip
1 files changed, 5 insertions, 0 deletions
diff --git a/includes/bit_setup_inc.php b/includes/bit_setup_inc.php
index 0c1a476..1d0bc91 100755
--- a/includes/bit_setup_inc.php
+++ b/includes/bit_setup_inc.php
@@ -132,8 +132,13 @@ if( empty( $gBitUser ) || !$gBitUser->isValid() ) {
 		if( empty($gBitUser) ) {
 			$gBitUser = new RolePermUser();
 			// maybe do something...
+			unset( $_SESSION['user_role'] );
 		}
 	}
+} else {
+	if (empty($_SESSION['user_role'])) {
+		$_SESSION['user_role'] = 3;
+	}
 }
 
 $gBitSmarty->assign( 'gBitUser', $gBitUser );
author	lsces <lester@lsces.co.uk>	2026-04-16 11:29:15 +0100
committer	lsces <lester@lsces.co.uk>	2026-04-16 11:29:15 +0100
commit	e0020d728d54bd97ced9df34a38ef9c39e05ff48 (patch)
tree	5c251f526d7da82897df8e89a3ca5b309fdb2808
parent	d3e19806bc94db461992d31207987bedf28ba765 (diff)
download	users-e0020d728d54bd97ced9df34a38ef9c39e05ff48.tar.gz users-e0020d728d54bd97ced9df34a38ef9c39e05ff48.tar.bz2 users-e0020d728d54bd97ced9df34a38ef9c39e05ff48.zip