#519 Validate ip address with session at every page load

Version_3.0
wont-fix
None
system
6
2013-12-17
2013-10-24
No

We should validate the $_SERVER["REMOTE_ADDRESS"] with the stored IP in adm_sessions on every page load. If that IP changed than the session isn't valid and should be deleted. A message to the user should be shown.

See forum http://forum.admidio.org/viewtopic.php?p=13776#p13776

Discussion

    • status: open --> wont-fix
     
  • not very useful because some servers change the ip at every page load, see forum thread for details.