if ($prefs['feature_ticketlib2'] == 'y' && !isset($_SESSION['ticket'])) {
$_SESSION['ticket'] = md5(uniqid(rand()));
}
} else {
$user = NULL;
if ( isset($prefs['login_http_basic']) && $prefs['login_http_basic'] === 'always' ||
(isset($prefs['login_http_basic']) && $prefs['login_http_basic'] === 'ssl' && isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on')) {
// Authenticate if the credentials are present, do nothing otherwise
if (isset($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW'])) {
$validate = $userlib->validate_user($_SERVER['PHP_AUTH_USER'], $_SERVER['PHP_AUTH_PW']);
if ($validate[0]) {
$user = $validate[1];
$userlib->confirm_user($user);
} else {
header('WWW-Authenticate: Basic realm="'.$tikidomain.'"');
header('HTTP/1.0 401 Unauthorized');
exit;
}
}
}
}
if (is_object($smarty)) {
$smarty->assign('CSRFTicket', isset( $_SESSION['ticket'] ) ? $_SESSION['ticket'] : null);
}
require_once ('lib/setup/perms.php');
// --------------------------------------------------------------
// deal with register_globals
