Regenerate session id after entering password

Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl>
author: Roeland Jago Douma <roeland@famdouma.nl> 2021-05-19 09:27:51 +0200
committer: Roeland Jago Douma <roeland@famdouma.nl> 2021-05-19 09:27:51 +0200
commit: 918ed621d4b25ab5ae69c8a03621c90faf444081 (patch)
tree: 1a6f37bcbdfe4d7fea1450d4a336708c2a85500b /lib/Controller/PageController.php
parent: 75661785fac7046bc3f90e10d8319a77dbeba5d7 (diff)
1 files changed, 2 insertions, 0 deletions
diff --git a/lib/Controller/PageController.php b/lib/Controller/PageController.php
index fc86dda56..96b541de6 100644
--- a/lib/Controller/PageController.php
+++ b/lib/Controller/PageController.php
@@ -228,6 +228,7 @@ class PageController extends Controller {
 					$passwordVerification = $room->verifyPassword($password);
 
 					if ($passwordVerification['result']) {
+						$this->talkSession->renewSessionId();
 						$this->talkSession->setPasswordForRoom($token, $password);
 					} else {
 						$this->talkSession->removePasswordForRoom($token);
@@ -293,6 +294,7 @@ class PageController extends Controller {
 
 			$passwordVerification = $room->verifyPassword($password);
 			if ($passwordVerification['result']) {
+				$this->talkSession->renewSessionId();
 				$this->talkSession->setPasswordForRoom($token, $password);
 			} else {
 				$this->talkSession->removePasswordForRoom($token);
author	Roeland Jago Douma <roeland@famdouma.nl>	2021-05-19 09:27:51 +0200
committer	Roeland Jago Douma <roeland@famdouma.nl>	2021-05-19 09:27:51 +0200
commit	918ed621d4b25ab5ae69c8a03621c90faf444081 (patch)
tree	1a6f37bcbdfe4d7fea1450d4a336708c2a85500b /lib/Controller/PageController.php
parent	75661785fac7046bc3f90e10d8319a77dbeba5d7 (diff)