[ticket/9912] Fix error in logic. Do not strip SID when user is not a bot.

This also moves the code up to the point where we know that the user is a bot. Regression from d07e152ea7 PHPBB3-9912
2025-06-25 20:45:16 +02:00 · 2011-01-19 03:08:27 +01:00
parent 0c23d6c069
commit 3b15fe0a5b
1 changed files with 7 additions and 6 deletions
--- a/phpBB/includes/session.php
+++ b/phpBB/includes/session.php
@ -583,6 +583,13 @@ class session
 			$bot = false;
 		}

+		// Bot user, if they have a SID in the Request URI we need to get rid of it
+		// otherwise they'll index this page with the SID, duplicate content oh my!
+		if ($bot && isset($_GET['sid']))
+		{
+			redirect(build_url(array('sid')));
+		}
+
 		// If no data was returned one or more of the following occurred:
 		// Key didn't match one in the DB
 		// User does not exist
@ -619,12 +626,6 @@ class session
 		}
 		else
 		{
-			// Bot user, if they have a SID in the Request URI we need to get rid of it
-			// otherwise they'll index this page with the SID, duplicate content oh my!
-			if (isset($_GET['sid']))
-			{
-				redirect(build_url(array('sid')));
-			}
 			$this->data['session_last_visit'] = $this->time_now;
 		}