Update of /cvsroot/phplib/php-lib-stable
In directory usw-pr-cvs1:/tmp/cvs-serv16982
Modified Files:
CHANGES
Log Message:
fallback_mode only when really no cookies avail + global switch to permit creation
of IDs provided by user
Index: CHANGES
===================================================================
RCS file: /cvsroot/phplib/php-lib-stable/CHANGES,v
retrieving revision 1.18
retrieving revision 1.19
diff -C2 -d -r1.18 -r1.19
*** CHANGES 3 Apr 2002 22:53:35 -0000 1.18
--- CHANGES 3 Jun 2002 04:39:02 -0000 1.19
***************
*** 1,4 ****
--- 1,13 ----
$Id$
+ 03-June-2002 Giancarlo Pinerolo
+ - session.inc fallback_mode only applies when cookies are disabled.
+ Session in URL cannot force fallback mode anymore when cookies are
+ avail. There no switch for that. If needed use a dedicated subclass
+ with mode=get in affected scripts or trusted environs.
+ - session.inc now has the block_alien_sid = true/false switch. It
+ blocks the creation of a new session by a sid provided by the user.
+
+
03-Apr-2002 layne_weathers
- in auth.inc, allow cancel_login to come from GET as well as POST
|
