csrf: (re)generate secret on GUI restart

(cherry picked from commit d6411ae0) (cherry picked from commit b78720b8)

csrf: (re)generate secret on GUI restart
(cherry picked from commit d6411ae0) (cherry picked from commit b78720b8)
3de0f4dc · Franco Fichtner · e8d34822 · 3de0f4dc · 3de0f4dc · e8d34822
Commit 3de0f4dc authored Apr 18, 2016 by Franco Fichtner
Hide whitespace changes
Inline Side-by-side

Showing with 3 additions and 1 deletion

system.inc src/etc/inc/system.inc +1 -0

csrf-magic.php src/www/csrf/csrf-magic.php +2 -0

csrf-secret.php src/www/csrf/csrf-secret.php +0 -1

No files found.
--- a/src/etc/inc/system.inc
+++ b/src/etc/inc/system.inc
@@ -963,6 +963,7 @@ function system_webgui_start()
    global $config;

    chdir('/usr/local/www');
+    @unlink('/usr/local/www/csrf/csrf-secret.php');

    /* defaults */
    $portarg = "80";

--- a/src/www/csrf/csrf-magic.php
+++ b/src/www/csrf/csrf-magic.php
@@ -425,6 +425,8 @@ function csrf_get_secret()
    }
    if (is_writable($dir)) {
        $secret = csrf_generate_secret();
+        touch($file);
+        chmod($file, 0600);
        $fh = fopen($file, 'w');
        fwrite($fh, '<?php $secret = "'.$secret.'";' . PHP_EOL);
        fclose($fh);

--- a/src/www/csrf/csrf-secret.php
+++ b/src/www/csrf/csrf-secret.php
-<?php $secret = "3f27f3793cfb16c2700474d5c613487e258143d9";