logout.php 783 B

12345678910111213141516171819202122232425262728293031323334353637383940
  1. <?php
  2. $needed_parts = array(
  3. 'nonce' => 1,
  4. 'nc' => 1,
  5. 'cnonce' => 1,
  6. 'qop' => 1,
  7. 'username' => 1,
  8. 'uri' => 1,
  9. 'response' => 1
  10. );
  11. $data = array();
  12. $keys = implode('|', array_keys($needed_parts));
  13. preg_match_all('/('.$keys.')=(?:([\'"])([^\2]+?)\2|([^\s,]+))/', $_SERVER['PHP_AUTH_DIGEST'], $matches, PREG_SET_ORDER);
  14. foreach ($matches as $m) {
  15. $data[$m[1]] = $m[3] ? $m[3] : $m[4];
  16. unset($needed_parts[$m[1]]);
  17. }
  18. if (!isset($_GET['nonce'])) {
  19. header('Location: logout.php?nonce='.$data['nonce']);
  20. die;
  21. }
  22. if ($data['nonce'] == $_GET['nonce']) {
  23. unset($_SERVER['PHP_AUTH_DIGEST']);
  24. require 'includes/login.inc.php';
  25. }
  26. header('Location: '.substr($_SERVER['REQUEST_URI'], 0, strpos($_SERVER['REQUEST_URI'], 'logout.php')));
  27. ?>