Impersonation with doubleCookie (#1746)
This commit is contained in:
parent
95c08b89e7
commit
fc034ad4bf
|
@ -141,9 +141,12 @@ sub run {
|
|||
$req->steps( [ $self->p->validSession, @{ $self->p->endAuth } ] );
|
||||
|
||||
# Restore _httpSession for double Cookies
|
||||
$req->{sessionInfo}->{_httpSession} =
|
||||
$req->{sessionInfo}->{real__httpSession}
|
||||
if $req->{sessionInfo}->{real__httpSession};
|
||||
if ( $self->conf->{securedCookie} >= 2 ) {
|
||||
$self->p->updateSession( $req, $spoofSession,
|
||||
$req->{sessionInfo}->{real__httpSession} );
|
||||
$req->{sessionInfo}->{_httpSession} =
|
||||
$req->{sessionInfo}->{real__httpSession};
|
||||
}
|
||||
return $statut;
|
||||
}
|
||||
|
||||
|
|
Loading…
Reference in New Issue
Block a user