Merge https://source.netsyms.com/business/businessapptemplate

index.php

@@ -104,7 +104,7 @@ header("Link: <static/js/bootstrap.min.js>; rel=preload; as=script", false);
     <body>
         <div class="row justify-content-center">
             <div class="col-auto">
-                <img class="banner-image" src="static/img/logo.png" />
+                <img class="banner-image" src="static/img/logo.svg" />
             </div>
         </div>
         <div class="row justify-content-center">

lib/login.php

@@ -247,6 +247,11 @@ function doLoginUser($username) {
     
     if ($resp['status'] == "OK") {
         $userinfo = $resp['data'];
+        session_regenerate_id(true);
+        $newSession = session_id();
+        session_write_close();
+        session_id($newSession);
+        session_start();
         $_SESSION['username'] = $username;
         $_SESSION['uid'] = $userinfo['uid'];
         $_SESSION['email'] = $userinfo['email'];

required.php

@@ -24,12 +24,13 @@ header('X-Frame-Options: "DENY"');
 header('Referrer-Policy: "no-referrer, strict-origin-when-cross-origin"');
 $SECURE_NONCE = base64_encode(random_bytes(8));
 
-$session_length = 60 * 60; // 1 hour
+$session_length = 60 * 60 * 2; // 2 hours
+ini_set('session.gc_maxlifetime', $session_length);
 session_set_cookie_params($session_length, "/", null, false, false);
 
 session_start(); // stick some cookies in it
 // renew session cookie
-setcookie(session_name(), session_id(), time() + $session_length);
+//setcookie(session_name(), session_id(), time() + $session_length);
 
 $captcha_server = (CAPTCHA_ENABLED === true ? preg_replace("/http(s)?:\/\//", "", CAPTCHA_SERVER) : "");
 if ($_SESSION['mobile'] === TRUE) {

static/css/fa-svg-with-js.css

@@ -1,5 +1,5 @@
 /*!
- * Font Awesome Free 5.0.12 by @fontawesome - https://fontawesome.com
+ * Font Awesome Free 5.0.13 by @fontawesome - https://fontawesome.com
  * License - https://fontawesome.com/license (Icons: CC BY 4.0, Fonts: SIL OFL 1.1, Code: MIT License)
  */
 svg:not(:root).svg-inline--fa {