One Hat Cyber Team

Your IP : 162.159.115.8

Server IP : 172.67.218.182

Server : Linux 128-201-239-36.cprapid.com 3.10.0-1160.41.1.el7.x86_64 #1 SMP Tue Aug 31 14:52:47 UTC 2021 x86_64

Server Software : Apache

PHP Version : 7.4.33

Buat File | Buat Folder

Dir : ~/home/juscatamarca/www/subdomains/escuela/admin/

View File Name : logout.php

<?php
// Configuración segura de sesión
session_set_cookie_params([
    'lifetime' => 3600,
    'path' => '/',
    'domain' => $_SERVER['HTTP_HOST'],
    'secure' => (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on'),
    'httponly' => true,
    'samesite' => 'Strict'
]);

if (session_status() === PHP_SESSION_NONE) {
    session_start();
}

require_once 'config/db.php';

// Registrar logout en logs
if (isset($_SESSION['user_id'])) {
    try {
        $stmt = $pdo->prepare('INSERT INTO login_logs (user_id, ip, action, timestamp) VALUES (?, ?, ?, NOW())');
        $stmt->execute([$_SESSION['user_id'], $_SERVER['REMOTE_ADDR'], 'logout']);
    } catch (PDOException $e) {
        // Ignorar si la tabla no existe
    }
}

// Destruir sesión de forma segura
$_SESSION = [];

// Limpiar cookie de "recordar usuario"
setcookie('ecj_remember_user', '', time() - 3600, '/');

if (ini_get("session.use_cookies")) {
    $params = session_get_cookie_params();
    setcookie(session_name(), '', time() - 42000,
        $params["path"], $params["domain"],
        $params["secure"], $params["httponly"]
    );
}

session_destroy();

// Establecer headers de no-cache para prevenir que el navegador almacene en caché la página
header('Cache-Control: no-store, no-cache, must-revalidate, max-age=0');
header('Pragma: no-cache');
header('Expires: Thu, 01 Jan 1970 00:00:00 GMT');

header('Location: login.php?logout=1');
exit;
?>