0,
'path' => '/',
'domain' => '',
'secure' => $secureCookie,
'httponly' => true,
'samesite' => 'Lax',
]);
session_start();
$expectedPassword = '18032012';
$error = false;
function clientFingerprint(): string
{
$ua = $_SERVER['HTTP_USER_AGENT'] ?? '';
$ip = $_SERVER['REMOTE_ADDR'] ?? '';
return hash('sha256', $ua . '|' . $ip);
}
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
$password = isset($_POST['password']) ? trim((string) $_POST['password']) : '';
if (hash_equals($expectedPassword, $password)) {
session_regenerate_id(true);
$_SESSION['scarus_auth'] = true;
$_SESSION['created_at'] = time();
$_SESSION['last_activity'] = time();
$_SESSION['last_regeneration'] = time();
$_SESSION['fingerprint'] = clientFingerprint();
header('Location: home.php', true, 302);
exit;
}
$error = true;
}
?>
Scarus