Avoid NO_AUTH_REQUIRED2 in secure_login.php

myvesta · web-flow · commit 3e7a59a8ec3d · 2018-04-11T12:59:11.000+02:00
diff --git a/web/inc/secure_login.php b/web/inc/secure_login.php
@@ -1,8 +1,11 @@
 <?php
-require_once('/usr/local/vesta/web/inc/login_url.php');
-if (isset($_GET[$login_url])) {
-    setcookie($login_url, '1', time() + 31536000, '/', $_SERVER['HTTP_HOST'], true);
-    header ("Location: /login/");
-    exit;
+if (!defined('NO_AUTH_REQUIRED2')) {
+    if (file_exists('/usr/local/vesta/web/inc/login_url.php')) {
+        require_once('/usr/local/vesta/web/inc/login_url.php');
+        if (isset($_GET[$login_url])) {
+            setcookie($login_url, '1', time() + 31536000, '/', $_SERVER['HTTP_HOST'], true);
+            header ("Location: /login/");
+            exit;
+        }
+        if (!isset($_COOKIE[$login_url])) exit;
 }
-if (!isset($_COOKIE[$login_url])) exit;
