Merge pull request #3 from leafsphp/fix-session-start

crosa7 · web-flow · commit 7cb875a8cb3e · 2023-10-07T22:12:46.000+01:00
FIX: Prevent session start if session already started
diff --git a/.gitignore b/.gitignore
@@ -1,4 +1,5 @@
 test
 Experimental
 vendor
-composer.lock
+composer.lock
+.idea
diff --git a/src/CSRF.php b/src/CSRF.php
@@ -18,7 +18,7 @@ class CSRF extends Anchor
 
     /**
      * Manage config for leaf anchor
-     * 
+     *
      * @param array|null $config The config to set
      */
     public static function config($config = null)
@@ -32,8 +32,10 @@ public static function config($config = null)
 
     public static function init()
     {
-        session_start();
-        
+        if (session_status() !== PHP_SESSION_ACTIVE) {
+            session_start();
+        }
+
         if (!isset($_SESSION[static::$config["SECRET_KEY"]])) {
             Session::set(static::$config["SECRET_KEY"], static::generateToken());
         }
