+

+/**

+* Add a secret hash for use in links/GET requests

+* @param string $link_name The name of the link; has to match the name used in check_form_key, otherwise no restrictions apply

+* @param int $length The length of the key to generate

+* @return sting the hash

+

+*/

+function generate_link_hash($link_name)

+{

+ global $user;

+ if (!isset($user->data["hash_$link_name"]))

+ {

+ $user->data["hash_$link_name"] = substr(sha1($user->data['user_form_salt'] . $link_name), 0, 8);

+ }

+ return $user->data["hash_$link_name"];

+}

+

+

+/**

+* checks a link hash - for GET requests

+* @param string $token the submitted token

+* @param string $link_name The name of the link; has to match the name used in check_form_key, otherwise no restrictions apply

+* @param int $length The length of the key to check

+* @return boolean true if all is fine

+*/

+function check_link_hash($token, $link_name)

+{

+ return $token === generate_link_hash($link_name);

+}

+