DataObjects/Core_person.php

[Pman.Core] / DataObjects / Core_person.php
diff --git a/DataObjects/Core_person.php b/DataObjects/Core_person.php

index de765b9..29d3cbd 100644 (file)
--- a/DataObjects/Core_person.php
+++ b/DataObjects/Core_person.php
@@ -407,23 +407,14 @@ class Pman_Core_DataObjects_Core_person extends DB_DataObject
          //var_dump(array(get_class($this),$sesPrefix .'-auth'));
         
          if (self::$authUser) {
-            $a = self::$authUser; // are they still allowed to do stuff..
-            
-            $u = DB_DataObject::factory($this->tableName()); // allow extending this ...
-            $u->autoJoin();
-            if ($u->get($a->id)) { /// && strlen($u->passwd)) {  // should work out the pid .. really..
-                if (isset($_SESSION[get_class($this)][$sesPrefix .'-auth'])) {
-                    $_SESSION[get_class($this)][$sesPrefix .'-auth-timeout'] = time() + (30*60); // eg. 30 minutes
-                    setcookie('Pman.timeout', time() + (30*60), time() + (30*60), '/');
-                }
-                
-                $user = clone ($u);
-                return clone($user);
-            
+             
+            if (isset($_SESSION[get_class($this)][$sesPrefix .'-auth'])) {
+                $_SESSION[get_class($this)][$sesPrefix .'-auth-timeout'] = time() + (30*60); // eg. 30 minutes
+                setcookie('Pman.timeout', time() + (30*60), time() + (30*60), '/');
              }
-            unset($_SESSION[get_class($this)][$sesPrefix .'-auth']);
-            unset($_SESSION[get_class($this)][$sesPrefix .'-timeout']);
-            setcookie('Pman.timeout', -1, time() + (30*60), '/');
+            
+            return = clone (self::$authUser);
+             
              
          }
          
@@ -503,6 +494,8 @@ class Pman_Core_DataObjects_Core_person extends DB_DataObject
          
          //var_dump(array(get_class($this),$sesPrefix .'-auth'));
          $_SESSION[get_class($this)][$sesPrefix .'-auth'] = serialize((object)$d);
+        
+        self::$authUser = $p;
          // ensure it's written so that ajax calls can fetch it..
          
          
@@ -518,6 +511,8 @@ class Pman_Core_DataObjects_Core_person extends DB_DataObject
          
          $_SESSION[get_class($this)][$sesPrefix .'-auth'] = "";
          
+        self::$authUser = false;
+        
      }    
      function genPassKey ($t) 
      {
@@ -1420,7 +1415,7 @@ class Pman_Core_DataObjects_Core_person extends DB_DataObject
          return $sesPrefix;
      }
      
-    function loginPublic()
+    function loginPublic() // used where???
      {
          $this->isAuth(); // force session start..