views:

33

answers:

1
+2  A: 

Probably what you need is to put parenthesis around your if check parts, they are probably getting evaluated in another way than your logic needs:

if( (isset($_POST['token']) && $_POST['token'] != $_SESSION['token']) //<-- added parenthesis around those
  || !isset($_POST['token'])
  || !isset($_SESSION['token']))
aularon
"Very yes." I am in agreement!
mattbasta
Thanks aularon seems to be ok so thanks very much for your time and help :)
PHPLOVER