 Relationships |
|
| Anonymous | Login | Signup for a new account | 2013.06.19 00:59 CEST |
| Main | My View | View Issues | Change Log | Roadmap | Docs |
| Viewing Issue Advanced Details [ Jump to Notes ] | [ Issue History ] [ Print ] | ||||||
| ID | Category | Severity | Reproducibility | Date Submitted | Last Update | ||
| 0001452 | [Piwigo] authentication | feature | N/A | 2010.02.22 00:15 | 2010.02.23 19:46 | ||
| Reporter | plg | View Status | public | ||||
| Assigned To | plg | ||||||
| Priority | normal | Resolution | fixed | Platform | |||
| Status | closed | OS | |||||
| Projection | none | OS Version | |||||
| ETA | none | Fixed in Version | 2.0.9 | Product Version | 2.0.8 | ||
| Target Version | 2.0.9 | Product Build | |||||
| Summary | 0001452: check cookies on login form | ||||||
| Description |
Currently, when cookies are disabled, Piwigo returns no error, you just don't get connected. It's very annoying and I see more and more users disabling their cookies (I don't understand why). I'm thinking about adding the session_id in the POST data to identification.php and check if it is present and equal to the one in $_COOKIES['pwg_id']. |
||||||
| Steps To Reproduce | |||||||
| Additional Information | |||||||
| Tags | No tags attached. | ||||||
| browser | any | ||||||
| Database engine and version | |||||||
| PHP version | |||||||
| Web server | Apache 1.3.x | ||||||
| Attached Files | |||||||
|
|
|||||||
|
Relationships |
|
|
Notes |
|
|
(0003435) svn (reporter) 2010.02.23 16:50 |
[Subversion] r4955 by plg on branch 2.0 -----[Subversion commit log]---------------------------------------------------- bug 1452 fixed: check cookies are enabled in web browser and notify user otherwise that she can't connect. |
|
(0003436) plg (manager) 2010.02.23 16:51 |
As suggested by nicolas, it was useless to transmit the session id in POST. A simple check on $_COOKIE[session_name()] is enough (and avoid to make templates like gally or simple incompatible with Piwigo 2.0.9) |
|
(0003437) svn (reporter) 2010.02.23 16:52 |
[Subversion] r4956 by plg on trunk -----[Subversion commit log]---------------------------------------------------- merge r4955 from branch 2.0 to trunk bug 1452 fixed: check cookies are enabled in web browser and notify user otherwise that she can't connect. |
|
(0003439) svn (reporter) 2010.02.23 19:46 |
[Subversion] r4958 by samli on branch 2.0 -----[Subversion commit log]---------------------------------------------------- bug 1452 fixed: check cookies are enabled in web browser and notify user otherwise that she can't connect. |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 2010.02.22 00:15 | plg | New Issue | |
| 2010.02.22 00:15 | plg | Status | new => assigned |
| 2010.02.22 00:15 | plg | Assigned To | => plg |
| 2010.02.22 00:15 | plg | browser | => any |
| 2010.02.22 00:15 | plg | Web server | => Apache 1.3.x |
| 2010.02.23 16:50 | svn | Checkin | |
| 2010.02.23 16:50 | svn | Note Added: 0003435 | |
| 2010.02.23 16:51 | plg | Note Added: 0003436 | |
| 2010.02.23 16:52 | svn | Checkin | |
| 2010.02.23 16:52 | svn | Note Added: 0003437 | |
| 2010.02.23 16:55 | plg | Status | assigned => closed |
| 2010.02.23 16:55 | plg | Resolution | open => fixed |
| 2010.02.23 16:55 | plg | Fixed in Version | => 2.0.9 |
| 2010.02.23 19:46 | svn | Checkin | |
| 2010.02.23 19:46 | svn | Note Added: 0003439 | |
| Mantis 1.1.6[^] Copyright © 2000 - 2008 Mantis Group Contact |  |
