diff options
| author | Sébastien SAUVAGE <sebsauvage@sebsauvage.net> | 2013-02-26 14:47:47 +0100 |
|---|---|---|
| committer | Sébastien SAUVAGE <sebsauvage@sebsauvage.net> | 2013-02-26 14:47:47 +0100 |
| commit | 2d9fab88be93b2aed635eab987cd3716a1bdb579 (patch) | |
| tree | e8538857ba8ccd28ca3da4ca52f5a75dc33166db | |
| parent | fdc4c6a1cd1a367ce666340bb78e1d860cbcd53f (diff) | |
| download | Shaarli-2d9fab88be93b2aed635eab987cd3716a1bdb579.tar.gz Shaarli-2d9fab88be93b2aed635eab987cd3716a1bdb579.tar.zst Shaarli-2d9fab88be93b2aed635eab987cd3716a1bdb579.zip | |
Login problem correction
This corrects the session problem with some browsers when Shaarli is
hosted on a sub-domain. Please tell me if this corrects login problems
if you had one.
| -rw-r--r-- | index.php | 10 |
1 files changed, 7 insertions, 3 deletions
| @@ -34,7 +34,8 @@ define('PHPSUFFIX',' */ ?>'); // Suffix to encapsulate data in php code. | |||
| 34 | 34 | ||
| 35 | // Force cookie path (but do not change lifetime) | 35 | // Force cookie path (but do not change lifetime) |
| 36 | $cookie=session_get_cookie_params(); | 36 | $cookie=session_get_cookie_params(); |
| 37 | session_set_cookie_params($cookie['lifetime'],dirname($_SERVER["SCRIPT_NAME"]).'/'); // Default cookie expiration and path. | 37 | $cookiedir = ''; if(dirname($_SERVER['SCRIPT_NAME'])!='/') $cookiedir=dirname($_SERVER["SCRIPT_NAME"]).'/'; |
| 38 | session_set_cookie_params($cookie['lifetime'],$cookiedir); // Set default cookie expiration and path. | ||
| 38 | 39 | ||
| 39 | // PHP Settings | 40 | // PHP Settings |
| 40 | ini_set('max_input_time','60'); // High execution time in case of problematic imports/exports. | 41 | ini_set('max_input_time','60'); // High execution time in case of problematic imports/exports. |
| @@ -380,13 +381,16 @@ if (isset($_POST['login'])) | |||
| 380 | { | 381 | { |
| 381 | $_SESSION['longlastingsession']=31536000; // (31536000 seconds = 1 year) | 382 | $_SESSION['longlastingsession']=31536000; // (31536000 seconds = 1 year) |
| 382 | $_SESSION['expires_on']=time()+$_SESSION['longlastingsession']; // Set session expiration on server-side. | 383 | $_SESSION['expires_on']=time()+$_SESSION['longlastingsession']; // Set session expiration on server-side. |
| 383 | session_set_cookie_params($_SESSION['longlastingsession'],dirname($_SERVER["SCRIPT_NAME"]).'/'); // Set session cookie expiration on client side | 384 | |
| 385 | $cookiedir = ''; if(dirname($_SERVER['SCRIPT_NAME'])!='/') $cookiedir=dirname($_SERVER["SCRIPT_NAME"]).'/'; | ||
| 386 | session_set_cookie_params($_SESSION['longlastingsession'],$cookiedir); // Set session cookie expiration on client side | ||
| 384 | // Note: Never forget the trailing slash on the cookie path ! | 387 | // Note: Never forget the trailing slash on the cookie path ! |
| 385 | session_regenerate_id(true); // Send cookie with new expiration date to browser. | 388 | session_regenerate_id(true); // Send cookie with new expiration date to browser. |
| 386 | } | 389 | } |
| 387 | else // Standard session expiration (=when browser closes) | 390 | else // Standard session expiration (=when browser closes) |
| 388 | { | 391 | { |
| 389 | session_set_cookie_params(0,dirname($_SERVER["SCRIPT_NAME"]).'/'); // 0 means "When browser closes" | 392 | $cookiedir = ''; if(dirname($_SERVER['SCRIPT_NAME'])!='/') $cookiedir=dirname($_SERVER["SCRIPT_NAME"]).'/'; |
| 393 | session_set_cookie_params(0,$cookiedir); // 0 means "When browser closes" | ||
| 390 | session_regenerate_id(true); | 394 | session_regenerate_id(true); |
| 391 | } | 395 | } |
| 392 | // Optional redirect after login: | 396 | // Optional redirect after login: |