if ($prefs['feature_ticketlib2'] == 'y' && !isset($_SESSION['ticket'])) { $_SESSION['ticket'] = md5(uniqid(rand())); } } else { $user = NULL; if ( isset($prefs['login_http_basic']) && $prefs['login_http_basic'] === 'always' || (isset($prefs['login_http_basic']) && $prefs['login_http_basic'] === 'ssl' && isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on')) { // Authenticate if the credentials are present, do nothing otherwise if (isset($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW'])) { $validate = $userlib->validate_user($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW']); if ($validate[0]) { $user = $validate[1]; $userlib->confirm_user($user); } else { header('WWW-Authenticate: Basic realm="'.$tikidomain.'"'); header('HTTP/1.0 401 Unauthorized'); exit; } } } } if (is_object($smarty)) { $smarty->assign('CSRFTicket', isset( $_SESSION['ticket'] ) ? $_SESSION['ticket'] : null); } require_once ('lib/setup/perms.php'); // -------------------------------------------------------------- // deal with register_globals