(!$this->company_id || ($ff->Pman['auth_comptype'] != $this->company()->comptype))
){
-
+ // force a logout - without a check on the isAuth - as this is called from there..
+ $db = $this->getDatabaseConnection();
+ $sesPrefix = get_class($this) .'-'.$db->dsn['database'] ;
+ $_SESSION[__CLASS__][$sesPrefix .'-auth'] = "";
+ return false;
$ff->page->jerr("Login not permited to outside companies");
}
function login()
{
$this->isAuth(); // force session start..
- $this->verifyAuth();
+ if (!$this->verifyAuth()) {
+ return false;
+ }
$db = $this->getDatabaseConnection();