LOC-2 Session token is now checked and validity enforced
LOC-2 Session token is now checked and validity enforced

--- a/server/LocalChat.py
+++ b/server/LocalChat.py
@@ -561,9 +561,17 @@
             return False
         
         
+        # Validate the session information
+        self.cursor.execute("SELECT username from sessions where username=? and sesskey=?",(payload['user'],payload['sesskey']))
+        r = self.cursor.fetchone();
+        
+        if not r:
+            return False
+        
+        
         room = self.getRoomID(payload["roomName"])
         if not room:
-            return 400        
+            return False