public static function getLoggedIn() { if (isset($_SESSION['user']) && isset($_SESSION['ip'])) { /* need to verify the ip hasn't changed */ if ($_SESSION['ip'] === findIPLong()) { /* if the user variable is set then they are logged in for this session */ /* we can assume the pw's are right as the session variable is server side */ return true; } else { } /* ip has changed need to create new session for them based on cookies or log them out */ } /* else we need to check cookies for the id & hash */ $pl = new Account_PersistantLogin(); /* fill the class with data from cookie data */ $pl->fromCookies(); /* if the persistant login is valid we can have them logged in */ if ($pl->isValid()) { $user = new Account_User(); $user->read(array('name' => $pl->username)); $_SESSION['user'] = $user; $_SESSION['ip'] = findIPLong(); return true; } else { } return false; }