Ticket #1483986 (Bugs) Session expires
Martin Marques
martin at bugs.unl.edu.ar
Fri Sep 8 14:16:07 CEST 2006
All I did was put the return true (no other changes made to the code), and
it seems to work ok. So the problem is in someplace of the
rcmail_authenticate_session().
On Thu, 7 Sep 2006, Mr. B. Vrieling wrote:
> Hi all,
>
> While I won't claim that I have fixed *the* session expiry problem, if the lack of recent complaints from my users is any indication, I have fixed *my* session expiry problem.
>
> Following up on a tip from Thomas, I disabled the rcmail_authenticate_session() function in /program/include/main.inc. As Thomas explained, this piece of code does a double check on a cookie dropped in the client as a security check. To disable it, I changed the "return $valid;" at the end of this function to "return TRUE;" and the complaints I had been receiving died just like that.
>
> DISCLAIMER: While I don't recall changing anything else of significance around the same time, I might have. I have been poking around a little.... So while I *think* the above fixed the problem for me, someone else had better verify it.
>
> ..Bruce
>
>
21:50:04 up 2 days, 9:07, 0 users, load average: 0.92, 0.37, 0.18
---------------------------------------------------------
Lic. Martín Marqués | SELECT 'mmarques' ||
Centro de Telemática | '@' || 'unl.edu.ar';
Universidad Nacional | DBA, Programador,
del Litoral | Administrador
---------------------------------------------------------
More information about the Dev
mailing list