fix csrf_token for single user mode

12 years ago · 21e42e5fb0
parent ecbd7b91fe
commit 21e42e5fb0
1 changed files with 4 additions and 1 deletions
--- a/include/functions.php
+++ b/include/functions.php
@ -838,7 +838,10 @@
 			$_SESSION["uid"] = 1;
 			$_SESSION["name"] = "admin";
 			$_SESSION["access_level"] = 10;
-			$_SESSION["csrf_token"] = sha1(uniqid(rand(), true));
+
+			if (!$_SESSION["csrf_token"]) {
+				$_SESSION["csrf_token"] = sha1(uniqid(rand(), true));
+			}

 			$_SESSION["ip_address"] = $_SERVER["REMOTE_ADDR"];