From: jakubvrana <jakubvrana@7c3ca157-0c34-0410-bff1-cbf682f78f5c>
Date: Wed, 11 Jul 2007 08:19:41 +0000 (+0000)
Subject: Don't regenerate token with invalid login
X-Git-Tag: v3.0.0~1391
X-Git-Url: https://git.joonet.de/?a=commitdiff_plain;h=d433043ff746966d4f821bde58f87e7a6b6df4be;p=adminer.git

Don't regenerate token with invalid login

git-svn-id: https://adminer.svn.sourceforge.net/svnroot/adminer/trunk@115 7c3ca157-0c34-0410-bff1-cbf682f78f5c
---

diff --git a/auth.inc.php b/auth.inc.php
index 41e9ab83..3806d71d 100644
--- a/auth.inc.php
+++ b/auth.inc.php
@@ -30,7 +30,7 @@ if (isset($_POST["server"])) {
 }
 
 if (!isset($_SESSION["usernames"][$_GET["server"]]) || !$mysql->connect($_GET["server"], $_SESSION["usernames"][$_GET["server"]], $_SESSION["passwords"][$_GET["server"]])) {
-	if ($_POST["token"]) {
+	if ($_POST["token"] && !isset($_SESSION["usernames"][$_GET["server"]])) {
 		$_POST["token"] = token();
 	}
 	page_header(lang('Login'));