- /* Verify that username and password are correct. */
- if ($force_username_lowercase) {
- $login_username = strtolower($login_username);
- }
-
- $imapConnection = sqimap_login($login_username, $key, $imapServerAddress, $imapPort, 0);
- /* From now on we are logged it. If the login failed then sqimap_login handles it */
-
- /* regenerate the session id to avoid session hyijacking */
- sqsession_destroy();
- @sqsession_is_active();
- session_regenerate_id();
- /**
- * The cookie part. session_start and session_regenerate_session normally set
- * their own cookie. SquirrelMail sets another cookie which overwites the
- * php cookies. The sqsetcookie function sets the cookie by using the header
- * function which gives us full control how the cookie is set. We do that
- * to add the HttpOnly cookie attribute which blocks javascript access on
- * IE6 SP1.
- */
- sqsetcookie(session_name(),session_id(),false,$base_uri);
- sqsetcookie('key', $key, false, $base_uri);
-
- sqsession_register($onetimepad, 'onetimepad');
+/* Case-normalise username if so desired */
+if ($force_username_lowercase) {
+ $login_username = strtolower($login_username);
+}