Nosial/socialbox-php
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1

Handle missing session in DHE exchange requests

Browse source
This commit is contained in:
netkas 2025-01-10 13:34:40 -05:00
parent 2c83604057
commit ec32978050
1 changed files with 7 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
src/Socialbox/Socialbox.php
View file

@ -286,8 +286,14 @@
return; return;
} }
// Check if the session is awaiting a DHE exchange, forbidden if not
$session = $clientRequest->getSession(); $session = $clientRequest->getSession();
if($session === null)
{
self::returnError(404, StandardError::SESSION_NOT_FOUND, 'Session not found');
return;
}
// Check if the session is awaiting a DHE exchange, forbidden if not
if($session->getState() !== SessionState::AWAITING_DHE) if($session->getState() !== SessionState::AWAITING_DHE)
{ {
self::returnError(403, StandardError::FORBIDDEN, 'Bad request: The session is not awaiting a DHE exchange'); self::returnError(403, StandardError::FORBIDDEN, 'Bad request: The session is not awaiting a DHE exchange');