$http_code = isset($_SESSION['http_code']) ? $_SESSION['http_code'] : ""; // code returned by curl $expires = isset($_SESSION['expires']) ? $_SESSION['expires'] : ""; //Authorization token expiration $access_token = isset($_SESSION['access_token']) ? $_SESSION['access_token'] : ""; //if present, indicates user is authenticated $refresh_token = isset($_SESSION['refresh_token']) ? $_SESSION['refresh_token'] : ""; //if present, indicates user is capable of refreshing even if access_token has expired. $username = isset($_SESSION['username']) ? $_SESSION['username'] : ""; // username for login to authenticate $dbid = isset($_SESSION['dbid']) ? $_SESSION['dbid'] : ""; //most recent GDB configuration viewed or edited (NOT NEEDED HERE?) $login_id = isset($_SESSION['login_id']) ? $_SESSION['login_id'] : ""; // (set by login_exec.php); this is the GDB that was originally used for login (if any), go to the logout script, and return here. $redirect = "login"; $logout_result = login_status($redirect, $username, $http_code, $access_token, $refresh_token, $login_id, $expires); // login.functions_inc.php; checks login/refresh status based on elapsed time and stored refresh token $logout_redirect = $logout_result[0]; $time_left = $logout_result[1]; $refresh_current = $logout_result[2]; if ($logout_redirect != "") { header("Location: {$logout_redirect}"); // logs out (resets session variables) } // Session variables $refresh_token = isset($_SESSION['refresh_token']) ? $_SESSION['refresh_token'] : ""; //if set, indicates user is capable of refreshing $access_token = isset($_SESSION['access_token']) ? $_SESSION['access_token'] : ""; //if set, indicates user is logged in $username = isset($_SESSION['username']) ? $_SESSION['username'] : ""; //if set, indicates user is logged in
function protected_page() { if (!login_status()) { redirect_to('index.php'); } }