Fix CSRF vulnerabilities

[sql-web.git] / signup.php

diff --git a/signup.php b/signup.php
index 27d80d51e9123836820e00da18c79c3bc273bed1..5d55fcc2e334382c4d54b6d73fdb71fa0b9d22ef 100644 (file)
--- a/signup.php
+++ b/signup.php
@@ -1,4 +1,7 @@
 <?php
+/*
+       (c) 2005 Joe Presbrey
+*/
 
 require_once('mitsql.cfg.php');
 require_once('mitsql.lib.php');
@@ -23,8 +26,8 @@ if (isLoggedIn()) {
                        } else {
                                $u = new User($LoginSSL->getUserId());
                                $u->signup($i_p1);
-                               $LoginSSL->refresh();
-                               sess('Login', $LoginSSL);
+                // TODO: missing function call, replace?
+                               // $LoginSSL->refresh();
                                redirect('login', true);
                        }
                } elseif (isPost()) {