Another session destroy but beter

[fa-stable.git] / install / save.php

diff --git a/install/save.php b/install/save.php
index acb8666bc4ee2ec94735985d67605226e8f5f8a6..d367cfc8137ca397897e22e830226fdad6f2a564 100644 (file)
--- a/install/save.php
+++ b/install/save.php
@@ -379,24 +379,12 @@ if (!$db)
                        display_error("The configuration file $config_filename is not writable. Change its permissions so it is, then re-run step 4.");
        }
 }
-/*
+
 session_unset();
+session_regenerate_id();
 session_destroy();
 $_SESSION = array();
-*/
-session_start();
-$_SESSION = array();
-// If it's desired to kill the session, also delete the session cookie.
-// Note: This will destroy the session, and not just the session data!
-if (ini_get("session.use_cookies")) {
-    $params = session_get_cookie_params();
-    setcookie(session_name(), '', time() - 42000,
-        $params["path"], $params["domain"],
-        $params["secure"], $params["httponly"]
-    );
-}
-// Finally, destroy the session.
-session_destroy();
+
 header("Location: ".$path_to_root."/index.php");
 exit();