去掉对ip的检测，因为再某些多出口的网络环境中可能存在多个ip来回切换的情况

2025-03-18 08:59:40 +01:00 · 2014-03-01 17:29:32 +08:00 · 2014-03-01 17:29:32 +08:00 · 8aa706fd49
commit 8aa706fd49
parent 7ccd45dd87
1 changed files with 2 additions and 4 deletions
--- a/var/Widget/Security.php
+++ b/var/Widget/Security.php
@ -32,8 +32,7 @@ class Widget_Security extends Typecho_Widget
        $token = uniqid();
        if ($user->hasLogin()) {
            $token = $user->authCode . '&' . $user->uid
-                . '&' . $this->request->getRequestUrl()
-                . '&' . $this->request->getIp();
+                . '&' . $this->request->getRequestUrl();
        }

        $this->_token = md5($token);
@ -70,8 +69,7 @@ class Widget_Security extends Typecho_Widget
        $token = uniqid();
        if ($user->hasLogin()) {
            $token = $user->authCode . '&' . $user->uid
-                . '&' . $this->request->getReferer()
-                . '&' . $this->request->getIp();
+                . '&' . $this->request->getReferer();
        }

        if ($this->request->get('_') != md5($token)) {