From cfeedd39a44d9818630396c71896d5cb00a0965d Mon Sep 17 00:00:00 2001
From: Isaac Connor <isaac@zoneminder.com>
Date: Fri, 16 Aug 2019 15:07:20 -0400
Subject: [PATCH] Use zm_session_start instead of session_start

---
 web/api/app/Controller/AppController.php | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/web/api/app/Controller/AppController.php b/web/api/app/Controller/AppController.php
index a241d1fc5..b6ef078be 100644
--- a/web/api/app/Controller/AppController.php
+++ b/web/api/app/Controller/AppController.php
@@ -92,14 +92,13 @@ class AppController extends Controller {
         $stateful = $this->request->query('stateful') ? $this->request->query('stateful') : $this->request->data('stateful');
         if ( $stateful ) {
 
-          session_start();
+          zm_session_start();
           $_SESSION['remoteAddr'] = $_SERVER['REMOTE_ADDR']; // To help prevent session hijacking
           $_SESSION['username'] = $user['Username'];
           if ( ZM_AUTH_RELAY == 'plain' ) {
             // Need to save this in session, can't use the value in User because it is hashed
             $_SESSION['password'] = $_REQUEST['password'];
           }
-          zm_session_regenerate_id();
           session_write_close();
         }
       }