Re: [Phpgroupware-users] 0.9.16, php sessions, and the endless loop

[Dave Hall]

I have been offline for a few days - just checking my mail, so sorry if
I missed something in this thread.

I did some work on fixing non "GET" based PHP4 sessions for the 16
branch.  What should happen is that it sets the php config option (i
forget the name) based on the config option using an ini_set in the
constructor of class.sessions_php4.inc.php

I will look back over the code again in the morning.

Cheers

Dave

Chris Weiss <address@hidden> wrote:

> well, I'll admit that I don't fully understand sessions:)
> 
> can you file a bug report with as much info as you can to 
> reproduce the
> problem?
> 
> Brad Bulger (address@hidden) wrote:
> >
> >
> > should add, may not be quite so straight-forward - seems that it was
> > a combination of those flags being set, and having run a test script
> > that did a session_start(), and THEN trying to log in, that made the
> > 'could not be verified' loop stop. still, same general idea.
> >
> >
> > On Sat, 29 Nov 2003, Brad Bulger wrote:
> >
> > >
> > > yep - it's just /tmp (i ran a script just now to check this, 
> since it
> > > is OS X and sometimes is strange for no reason...)
> > >
> > > ah hah! but php.ini was the right place to look anyway. there are
> > > two flags in there, use_cookies and use_only_cookies - both were
> > > set to 1 (true). setting them to 0 in an .htaccess file makes it
> > > all work.
> > >
> > > it would be possible to check this with ini_get() and maybe do
> > > something reasonable about it. i'd be glad to see if i can figure
> > > that out - but would it be better to handle that in /setup/ 
> somewhere,> > or in login.php itself? might be, best thing to do 
> would be to set
> > > the default to usecookies=true if that flag is set, and to disable
> > > the choice if use_only_cookies is set.
> > >
> > > thanks for your help!
> > >
> > > -b
> > >
> > > On Sat, 29 Nov 2003, Chris Weiss wrote:
> > >
> > > > make sure the paths in php.ini for sessions are writable by 
> the web server
> > > >
> > > > Brad Bulger (address@hidden) wrote:
> > > > >
> > > > >
> > > > > In the current release of 0.9.16, if I choose PHP sessions 
> in setup,
> > > > > it puts me into an eternal loop of "Your session could not 
> be verified"
> > > > > when I try to log in to the site. If I explicitly set
> > > > >
> > > > > $GLOBALS['phpgw_info']['server']['usecookies'] = true;
> > > > >
> > > > > in login.php, this goes away.
> > > > >
> > > > > What in tarnation is going on here? I can't tell it to use 
> cookies> > > > for PHP sessions until I can log in. So I end up 
> stuck not being
> > > > > able to log in until I log in... Wacky.
> > > > >
> > > > >
> > > > >
> > > > >
> > > > > _______________________________________________
> > > > > Phpgroupware-users mailing list
> > > > > address@hidden
> > > > > http://mail.gnu.org/mailman/listinfo/phpgroupware-users
> > > > >
> > > >
> > > >
> > > >
> > > > _______________________________________________
> > > > Phpgroupware-users mailing list
> > > > address@hidden
> > > > http://mail.gnu.org/mailman/listinfo/phpgroupware-users
> > > >
> > >
> > >
> > > _______________________________________________
> > > Phpgroupware-users mailing list
> > > address@hidden
> > > http://mail.gnu.org/mailman/listinfo/phpgroupware-users
> > >
> >
> >
> > _______________________________________________
> > Phpgroupware-users mailing list
> > address@hidden
> > http://mail.gnu.org/mailman/listinfo/phpgroupware-users
> >
> 
> 
> 
> _______________________________________________
> Phpgroupware-users mailing list
> address@hidden
> http://mail.gnu.org/mailman/listinfo/phpgroupware-users
>

dave.hall.vcf
Description: Card for <dave.hall@mbox.com.au>