X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=includes%2Fsession.inc;h=27e6f8e6746e407ebc98471d7891b007aff20d7e;hb=5d3fcb9c57e586c20651594edf91a2dccb08df00;hp=ce56380a4b06ec4b2bce8527dc7fd41a2dd139a5;hpb=e2c00ab06dc6a4873fa4d06d2fed657271f6c568;p=fa-stable.git

diff --git a/includes/session.inc b/includes/session.inc
index ce56380a..27e6f8e6 100644
--- a/includes/session.inc
+++ b/includes/session.inc
@@ -77,7 +77,6 @@ class SessionManager
 
 		// Create new session without destroying the old one
 		session_regenerate_id();
- 
 		// Grab current session ID and close both sessions to allow other scripts to use them
 		$newSession = session_id();
 		session_write_close();
@@ -355,7 +354,6 @@ foreach ($installed_extensions as $ext)
 // ini_set('session.save_path', dirname(__FILE__).'/../tmp/');
 
 ini_set('session.gc_maxlifetime', 36000); // 10hrs
-ini_set('session.cache_limiter', 'private'); // prevent 'page expired' errors
 
 $Session_manager = new SessionManager();
 $Session_manager->sessionStart('FA'.md5(dirname(__FILE__)));
@@ -453,6 +451,14 @@ if (strstr($_SERVER['PHP_SELF'], 'logout.php') == false){
 			// Incorrect password
 				login_fail();
 			}
+			elseif(isset($_SESSION['timeout']) && !$_SESSION['timeout']['post'])
+			{
+				// in case of GET request redirect to avoid confirmation dialog 
+				// after return from menu option
+				header("HTTP/1.1 303 See Other");
+				header("Location: ".$_SESSION['timeout']['uri']);
+				exit();
+			}
 			$lang = &$_SESSION['language'];
 			$lang->set_language($_SESSION['language']->code);
 		}