From 6da112e8a9e0a4259c76a3a31c22aa30af1b4a96 Mon Sep 17 00:00:00 2001
From: xevidos <xevidos@gmail.com>
Date: Tue, 24 Jul 2018 09:45:36 -0400
Subject: [PATCH] Added extra check to session delete.

---
 components/user/class.user.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/components/user/class.user.php b/components/user/class.user.php
index 9f48b6d..5d940c2 100755
--- a/components/user/class.user.php
+++ b/components/user/class.user.php
@@ -57,6 +57,7 @@ class User
                 $_SESSION['user'] = $this->username;
                 $_SESSION['lang'] = $this->lang;
                 $_SESSION['theme'] = $this->theme;
+                $_SESSION['login_session'] = true;
                 if ($user['project']!='') {
                     $_SESSION['project'] = $user['project'];
                 }
@@ -114,7 +115,7 @@ class User
         		//echo var_dump( $_SESSION ) . "\n\n";
         		$_SESSION['lang'] = $this->lang;
                 $_SESSION['theme'] = $this->theme;
-        		if ( ( isset( $_SESSION["user"] ) && $_SESSION["user"] == $username && ( isset( $_SESSION['lang'] )  && isset( $_SESSION['theme'] ) ) ) || empty( $_SESSION ) ) {
+        		if ( ( isset( $_SESSION["user"] ) && $_SESSION["user"] == $username && ( isset( $_SESSION['lang'] )  && isset( $_SESSION['theme'] ) ) && isset( $_SESSION['login_session'] ) && $_SESSION['login_session'] == true ) || empty( $_SESSION ) ) {
         		    
         		    session_unset();
         			session_destroy();