| | |
|---|
| | | $OUTPUT_TYPE = 'html'; |
|---|
| | | $JS_OBJECT_NAME = 'rcmail'; |
|---|
| | | |
|---|
| | | if ($INSTALL_PATH!='') |
|---|
| | | if (empty($INSTALL_PATH)) |
|---|
| | | $INSTALL_PATH = './'; |
|---|
| | | else |
|---|
| | | $INSTALL_PATH .= '/'; |
|---|
| | | |
|---|
| | | // RC include folders MUST be included FIRST to avoid other |
|---|
| | |
|---|
| | | if ($_framed) |
|---|
| | | { |
|---|
| | | $COMM_PATH .= '&_framed=1'; |
|---|
| | | $SESS_HIDDEN_FIELD = "\n".'<input type="hidden" name="_framed" value="1" />'; |
|---|
| | | $SESS_HIDDEN_FIELD .= "\n".'<input type="hidden" name="_framed" value="1" />'; |
|---|
| | | } |
|---|
| | | |
|---|
| | | |
|---|
| | |
|---|
| | | } |
|---|
| | | |
|---|
| | | // check session cookie and auth string |
|---|
| | | else if ($_action!='login' && $sess_auth) |
|---|
| | | else if ($_action!='login' && $sess_auth && $_SESSION['user_id']) |
|---|
| | | { |
|---|
| | | if ($_auth !== $sess_auth || $_auth != rcmail_auth_hash($_SESSION['client_id'], $_SESSION['auth_time']) || |
|---|
| | | ($CONFIG['session_lifetime'] && $SESS_CHANGED + $CONFIG['session_lifetime']*60 < mktime())) |
|---|
| | | ($CONFIG['session_lifetime'] && isset($SESS_CHANGED) && $SESS_CHANGED + $CONFIG['session_lifetime']*60 < mktime())) |
|---|
| | | { |
|---|
| | | $message = show_message('sessionerror', 'error'); |
|---|
| | | rcmail_kill_session(); |
|---|
| | |
|---|
| | | } |
|---|
| | | |
|---|
| | | |
|---|
| | | // handle keep-alive signal |
|---|
| | | if ($_action=='keep-alive') |
|---|
| | | { |
|---|
| | | rcube_remote_response(''); |
|---|
| | | exit; |
|---|
| | | } |
|---|
| | | |
|---|
| | | |
|---|
| | | // only allow these templates to be included |
|---|
| | | $valid_tasks = array('mail','settings','addressbook'); |
|---|
| | | |
|---|
