Don't ignore scheme when cookie value is empty. Props bendalton. fixes #7521

git-svn-id: http://svn.automattic.com/wordpress/trunk@8731 1a063a9b-81f0-0310-95a4-ce76da25c4cd
2008-08-25 21:09:26 +00:00 · 2008-08-25 21:09:26 +00:00 · 37d88adaff
parent 8dfd6d050f
commit 37d88adaff
1 changed files with 21 additions and 9 deletions
--- a/wp-includes/pluggable.php
+++ b/wp-includes/pluggable.php
@ -484,7 +484,7 @@ if ( !function_exists('wp_validate_auth_cookie') ) :
 * @param string $scheme Optional. The cookie scheme to use: auth, secure_auth, or logged_in
 * @return bool|int False if invalid cookie, User ID if valid.
 */
-function wp_validate_auth_cookie($cookie = '', $scheme = 'auth') {
+function wp_validate_auth_cookie($cookie = '', $scheme = '') {
 	if ( ! $cookie_elements = wp_parse_auth_cookie($cookie, $scheme) ) {
 		do_action('auth_cookie_malformed', $cookie, $scheme);
 		return false;
@ -559,15 +559,27 @@ if ( !function_exists('wp_parse_auth_cookie') ) :
 * @param string $scheme Optional. The cookie scheme to use: auth, secure_auth, or logged_in
 * @return array Authentication cookie components
 */
-function wp_parse_auth_cookie($cookie = '', $scheme = 'auth') {
+function wp_parse_auth_cookie($cookie = '', $scheme = '') {
 	if ( empty($cookie) ) {
-		if ( is_ssl() ) {
-			$cookie_name = SECURE_AUTH_COOKIE;
-			$scheme = 'secure_auth';
-		} else {
-			$cookie_name = AUTH_COOKIE;
-			$scheme = 'auth';
-		}
+		switch ($scheme){
+			case 'auth':
+				$cookie_name = AUTH_COOKIE;
+				break;
+			case 'secure_auth':
+				$cookie_name = SECURE_AUTH_COOKIE;
+				break;
+			case "logged_in":
+				$cookie_name = LOGGED_IN_COOKIE;
+				break;
+			default:
+				if ( is_ssl() ) {
+					$cookie_name = SECURE_AUTH_COOKIE;
+					$scheme = 'secure_auth';
+				} else {
+					$cookie_name = AUTH_COOKIE;
+					$scheme = 'auth';
+				}
+	    }

 		if ( empty($_COOKIE[$cookie_name]) )
 			return false;