- Only call Authenticatoin::clearCookies() in Autthentication::authenticateCookies() if the cookie data fails to verify, and not in other cases
{
if (!$this->_fetchCookieUniqueId() OR !$this->_fetchCookiePassword())
{
- $this->clearCookies();
return false;
}
$this->authUser = $this->_fetchUserUsingCookies();
-
if (!$this->authUser)
{
$this->authUser = null;
- $this->clearCookies();
return false;
}
$change = false;
$user = new UserAPI($this->registry);
- $user->set('userid', $this->authUser[ $this->fieldMap['authid'] ]);
+ $user->set('userid', $this->bugdarUser['userid']);
$user->set_condition();
foreach ($fields AS $bugdar => $auth)
{