From c05042ed54795d60ee83b21d1985ff5cd7b70df2 Mon Sep 17 00:00:00 2001
From: Mike Mason <ms13sp@gmail.com>
Date: Fri, 7 Mar 2008 16:08:26 +0000
Subject: If the sessionid was used after the expire time the browser would
 give a funny error. Hopefully fixed...

git-svn-id: svn://svn.alpinelinux.org/acf/core/trunk@827 ab2d0c66-481e-0410-8bed-d214d4d58bed
---
 lib/session.lua | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'lib')

diff --git a/lib/session.lua b/lib/session.lua
index 27db90f..18a0c7b 100644
--- a/lib/session.lua
+++ b/lib/session.lua
@@ -154,9 +154,9 @@ end
 
 --need to see if this is a "real"-user session or just a temp one. 
 check_session = function (sessionpath, session )
-	if session == nil then return "an unknown user" end
-
+	if session == nil then return "an unknown user" end	
 	local fullpath = sessionpath .. "/session." .. session
+	if posix.stat(fullpath) == nil then return "an unknown user" end
 	if type(session) ~= "string" then return nil end
 	local s = string.gsub (session, "[^" .. b64 .. "]", "")
 	if s ~= session then
-- 
cgit v1.2.3