From fbaebb7485cfab4948b8fe000ef2a5279b376f04 Mon Sep 17 00:00:00 2001
From: "Justin J. Novack" <jnovack@gmail.com>
Date: Sun, 16 Sep 2012 11:53:48 -0400
Subject: FIX: add exit() after header('Location')

---
 www/auth.php | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

(limited to 'www/auth.php')

diff --git a/www/auth.php b/www/auth.php
index 8fe38e0..6d13f7e 100644
--- a/www/auth.php
+++ b/www/auth.php
@@ -230,10 +230,10 @@ if (isset($_POST['start'])) {
     $openid = $message->getArrayFormat();
     if ($GLOBALS['phorkie']['auth']['secure'] > 0 &&
         $GLOBALS['phorkie']['auth']['userlist']) {
-		if (!in_array($openid['openid.identity'], $GLOBALS['phorkie']['users'])) {
+        if (!in_array($openid['openid.identity'], $GLOBALS['phorkie']['users'])) {
             $redirect = 'http://' . $_SERVER['HTTP_HOST'] . "/forbidden";
             header('Location: ' . filter_var($redirect, FILTER_SANITIZE_URL));
-			exit;
+            exit;
         }
     }
     // include_once 'openid/wrapper.php';
@@ -253,6 +253,7 @@ if (isset($_POST['start'])) {
 
     $redirect = 'http://' . $_SERVER['HTTP_HOST'] . $_SESSION['REQUEST_URI'];
     header('Location: ' . filter_var($redirect, FILTER_SANITIZE_URL));
+    exit;
 }
 
 ?>
-- 
cgit v1.2.3