Ticket #1483986 (Bugs) Session expires

Martin Marques martin at bugs.unl.edu.ar
Fri Sep 8 14:16:07 CEST 2006


All I did was put the return true (no other changes made to the code), and 
it seems to work ok. So the problem is in someplace of the 
rcmail_authenticate_session().

On Thu, 7 Sep 2006, Mr. B. Vrieling wrote:

> Hi all,
>
> While I won't claim that I have fixed *the* session expiry problem, if the lack of recent complaints from my users is any indication, I have fixed *my* session expiry problem.
>
> Following up on a tip from Thomas, I disabled the rcmail_authenticate_session() function in /program/include/main.inc. As Thomas explained, this piece of code does a double check on a cookie dropped in the client as a security check. To disable it, I changed the "return $valid;" at the end of this function to "return TRUE;" and the complaints I had been receiving died just like that.
>
> DISCLAIMER: While I don't recall changing anything else of significance around the same time, I might have. I have been poking around a little.... So while I *think* the above fixed the problem for me, someone else had better verify it.
>
> ..Bruce
>
>

  21:50:04 up 2 days,  9:07,  0 users,  load average: 0.92, 0.37, 0.18
---------------------------------------------------------
Lic. Martín Marqués         |   SELECT 'mmarques' ||
Centro de Telemática        |       '@' || 'unl.edu.ar';
Universidad Nacional        |   DBA, Programador,
     del Litoral             |   Administrador
---------------------------------------------------------


More information about the Dev mailing list