phplib-trackers Mailing List for PHPLIB (Page 5)

Brought to you by: nhruby, richardarcher

phplib-trackers — List for monitoring the phplib SourceForge trackers.

You can subscribe to this list here.

2001	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug (91)	Sep (12)	Oct (26)	Nov (16)	Dec (14)
2002	Jan (37)	Feb (22)	Mar (39)	Apr (74)	May (14)	Jun (17)	Jul (81)	Aug (32)	Sep (28)	Oct (18)	Nov (8)	Dec (6)
2003	Jan (6)	Feb (11)	Mar (5)	Apr (4)	May (6)	Jun (6)	Jul (5)	Aug (3)	Sep (8)	Oct (4)	Nov (2)	Dec (2)
2004	Jan (1)	Feb	Mar (3)	Apr (8)	May (1)	Jun	Jul	Aug	Sep	Oct (3)	Nov	Dec (2)
2005	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec (1)
2006	Jan	Feb (2)	Mar (6)	Apr	May	Jun	Jul	Aug (1)	Sep (2)	Oct (2)	Nov	Dec
2007	Jan	Feb (2)	Mar	Apr	May	Jun	Jul	Aug	Sep (1)	Oct (1)	Nov	Dec
2008	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep (1)	Oct	Nov	Dec
2009	Jan (1)	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct	Nov	Dec
2010	Jan	Feb	Mar	Apr	May	Jun	Jul	Aug	Sep	Oct (41)	Nov	Dec (78)

Flat | Threaded

<< < 1 .. 3 4 5 6 7 .. 26 > >> (Page 5 of 26)

[Phplib-trackers] [ phplib-Bugs-672166 ] auto_init file included every page_view with session4

From: SourceForge.net <no...@so...> - 2003-01-22 06:16:46

Bugs item #672166, was opened at 2003-01-21 18:40
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=672166&group_id=31885

Category: Session
Group: current CVS
Status: Open
Resolution: None
Priority: 5
Submitted By: Joe Stewart (joestewart)
Assigned to: Nobody/Anonymous (nobody)
Summary: auto_init file included every page_view with session4

Initial Comment:
As noted in the source, sess->in does not persist so
the auto_init file is included every pageview. 

Email discussion:

https://sourceforge.net/mailarchive/message.php?msg_id=3573511


----------------------------------------------------------------------

Comment By: Lindsay Haisley (fmouse)
Date: 2003-01-22 00:20

Message:
Logged In: YES 
user_id=694133

Here's a patch which addresses this problem (I was the one
who brought it to Joe Stewart's attention).  Because php4
apparently won't allow an instance variable to be declared
global, and because a variable can't be placed under php4
session management unless it _is_ global, an intermediate
data structure must be used to preserve phplib session
instance variables throughout the session.  I've created a
CurrentSession class which serves as such a container.  This
may be overkill, but I considered it to be a more flexible
solution than a set of global variables whose names might be
best kept private, or a global array.

--- session4.inc        2003-01-21 23:44:05.000000000 -0600
+++ session4.inc.fixed  2003-01-21 23:44:00.000000000 -0600
@@ -11,6 +11,26 @@
 * @access    public
 * @package   PHPLib
 */ 
+
+class CurrentSession {
+  /**
+  * Include anything in this class that needs to be
preserved across page
+  * accesses and restored to $sess instance variables.  The
class is
+  * instantiated in $this->start() and $sess instance
variables are copied
+  * to it in $this->freeze().  Code must be added in these
functions to do
+  * this.
+  */
+  var $ai_done = false;   // storage for $sess->in
+       
+  function set_ai_done($val) {
+       $this->ai_done = $val;
+  }
+       
+  function get_ai_done() {
+       return $this->ai_done;
+  }
+}
+
 class Session {
 
 
@@ -170,6 +190,15 @@
 
     $ok = session_start();
     $this->id = session_id();
+    $sob = "sob_".session_id();
+    global $$sob;
+    if (!isset($_SESSION["sob_".session_id()])) {
+       $$sob = new CurrentSession;
+       $this->register($sob);
+    }
+    // Get the auto_init flag
+       $$sob = $_SESSION[$sob];
+    $this->in =  $$sob->get_ai_done();
    
     // If register_globals is off -> restore session
variables to global scope
     if(!(bool) ini_get('register_globals')) {
@@ -551,6 +580,11 @@
         eval("\[\]= \$$key;");
       }
     }
+    // Save the auto_init flag
+       $sob = "sob_".session_id();
+    global $$sob;
+    $$sob = $_SESSION[$sob];
+    $$sob->set_ai_done($this->in);
   }
 
   /**



----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=672166&group_id=31885

[Phplib-trackers] [ phplib-Bugs-672166 ] auto_init file included every page_view with session4

From: SourceForge.net <no...@so...> - 2003-01-22 00:36:53

Bugs item #672166, was opened at 2003-01-21 18:40
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=672166&group_id=31885

Category: Session
Group: current CVS
Status: Open
Resolution: None
Priority: 5
Submitted By: Joe Stewart (joestewart)
Assigned to: Nobody/Anonymous (nobody)
Summary: auto_init file included every page_view with session4

Initial Comment:
As noted in the source, sess->in does not persist so
the auto_init file is included every pageview. 

Email discussion:

https://sourceforge.net/mailarchive/message.php?msg_id=3573511


----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=672166&group_id=31885

[Phplib-trackers] [ phplib-Patches-668809 ] fix for of_textarea.php to allow checks of length&content

From: SourceForge.net <no...@so...> - 2003-01-15 23:53:17

Patches item #668809, was opened at 2003-01-15 15:55
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403613&aid=668809&group_id=31885

Category: None
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned to: Nobody/Anonymous (nobody)
Summary: fix for of_textarea.php to allow checks of length&content

Initial Comment:
Hi, 

the attached "of_textarea.php" is able to handle a min
and a max number of characters in the input, as well as
regex.

Using the following setup will allow 1 up to 3 small
characters:

    $f->add_element(array('type'=>'textarea',
                             'name'=>'comment',
                             'rows'=>6,
                             'cols'=>40,
                             'wrap'=>20,
                             'minlength'=>1,
                             'maxlength'=>3,
                             'length_e'=>'at least 1 up
to 3 chars',
                             'valid_regex'=>'^[a-z]*$',
                             'valid_e'=>'only small
chars allowed!',
                             'value'=>'This is a test
text area!'));

Maybe this is useful if one wants to be sure there will
be input and on the other hand to limit its length from
the beginning on.

Marko 

<mailto:mk...@ju...>


----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403613&aid=668809&group_id=31885

[Phplib-trackers] [ phplib-Bugs-661670 ] Increase active_sessions.val size

From: SourceForge.net <no...@so...> - 2003-01-03 15:28:46

Bugs item #661670, was opened at 2003-01-03 10:29
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=661670&group_id=31885

Category: DB_SQL
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Bob Gorman (rag56)
Assigned to: Nobody/Anonymous (nobody)
Summary: Increase active_sessions.val size

Initial Comment:
I would like to see the size of the val field in the active_sessions table 
increased.  For MySQL that would be from a type of 'text' to 
'mediumtext'.

For phplib-7.2d this is in the file:

  phplib-
7.2d/stuff/create_database.mysql


----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=661670&group_id=31885

[Phplib-trackers] [ phplib-Bugs-657822 ] ct_sql, ac_store

From: <no...@so...> - 2002-12-23 21:39:06

Bugs item #657822, was opened at 2002-12-23 04:00
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=657822&group_id=31885

Category: DB_SQL
Group: current CVS
Status: Open
Resolution: None
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned to: Nobody/Anonymous (nobody)
Summary: ct_sql, ac_store

Initial Comment:
i have an error where i use a frameset in which each 
frame uses the phplib : (in french)
<<
 Erreur de traitement dans la base de données :
Invalid SQL: insert into active_sessions ( sid, name, val, 
changed ) values 
('ad3ebd1806933e185137b158eecf8430', 'ST_Session', 'U
1Rf...7IA==', '20021223125357')
Erreur SQL : 1062 (Duplicate 
entry 'ad3ebd1806933e185137b158eecf8430-
ST_Session' for key 1)
Merci de contacter votre hébergeur.

Session terminée.
>>
i traced the problem and it seems to come from function 
ac_store in ct_sql.inc : (original code)
<<
    if ( $this->db->affected_rows() == 0
        && $this->db->query($squery)
        && $this->db->f(1) == 0
        && !$this->db->query($iquery)) {

        $ret = false;
    }
>>
and modified it with :
<<
if ( $this->db->affected_rows() == 0 &&
  $this->db->query($squery) )
{
  $this->db->next_record();
  if ( $this->db->f(0) == 0 &&
      !$this->db->query($iquery) )
  {
    $ret = false;
  }
}
>>

My question is : Is this a problem coming from my 
MySql version ?


----------------------------------------------------------------------

Comment By: Nobody/Anonymous (nobody)
Date: 2002-12-23 13:39

Message:
Logged In: NO 

If you are using framesets, you can not call page_close() in each 
frame.  You must call it only in one frame.

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=657822&group_id=31885

[Phplib-trackers] [ phplib-Bugs-657822 ] ct_sql, ac_store

From: <no...@so...> - 2002-12-23 12:00:49

Bugs item #657822, was opened at 2002-12-23 04:00
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=657822&group_id=31885

Category: DB_SQL
Group: current CVS
Status: Open
Resolution: None
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned to: Nobody/Anonymous (nobody)
Summary: ct_sql, ac_store

Initial Comment:
i have an error where i use a frameset in which each 
frame uses the phplib : (in french)
<<
 Erreur de traitement dans la base de données :
Invalid SQL: insert into active_sessions ( sid, name, val, 
changed ) values 
('ad3ebd1806933e185137b158eecf8430', 'ST_Session', 'U
1Rf...7IA==', '20021223125357')
Erreur SQL : 1062 (Duplicate 
entry 'ad3ebd1806933e185137b158eecf8430-
ST_Session' for key 1)
Merci de contacter votre hébergeur.

Session terminée.
>>
i traced the problem and it seems to come from function 
ac_store in ct_sql.inc : (original code)
<<
    if ( $this->db->affected_rows() == 0
        && $this->db->query($squery)
        && $this->db->f(1) == 0
        && !$this->db->query($iquery)) {

        $ret = false;
    }
>>
and modified it with :
<<
if ( $this->db->affected_rows() == 0 &&
  $this->db->query($squery) )
{
  $this->db->next_record();
  if ( $this->db->f(0) == 0 &&
      !$this->db->query($iquery) )
  {
    $ret = false;
  }
}
>>

My question is : Is this a problem coming from my 
MySql version ?


----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=657822&group_id=31885

[Phplib-trackers] [ phplib-Feature Requests-655573 ] add .php at last in the extension

From: <no...@so...> - 2002-12-19 17:13:22

Feature Requests item #655573, was opened at 2002-12-18 00:25
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403614&aid=655573&group_id=31885

Category: Interface Improvements (example)
Group: Next Release (example)
Status: Open
Priority: 5
Submitted By: Prachait Saxena (prachait)
Assigned to: Nobody/Anonymous (nobody)
Summary: add .php at last in the extension

Initial Comment:
Hi

Some time we put the the phplib the web directory so
when we call the phplib folder .. file names are .inc
will show the contents. 

Please change the extensions of the file as

file.inc -> file.inc.php

Hope you will consider this.


Prachait Saxena




----------------------------------------------------------------------

>Comment By: Layne Weathers (layne_weathers)
Date: 2002-12-19 11:13

Message:
Logged In: YES 
user_id=278685

You need to configure your web server a bit more securely.

Even if you put the PHPLib directory within a web directory,
the PHPLib directory should not be servable. Use a simple
.htaccess file to block all requests:
    <Limit GET POST>
    Order allow,deny
    Deny from all
    Satisfy All
    </Limit>

In addition, you should have Apache configured to ignore all
requests for .inc files:
    <Files ~"\.inc$">
    Order allow,deny
    Deny from all
    Satisfy All
    </Files>

----------------------------------------------------------------------

Comment By: Joe Stewart (joestewart)
Date: 2002-12-18 09:43

Message:
Logged In: YES 
user_id=77269

If this is a problem for you see the linked script.  It will
change all file extensions and references as you request:

http://cvs.sourceforge.net/cgi-bin/viewcvs.cgi/phpslash/phpslash-ft/contrib/extchg.sh

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403614&aid=655573&group_id=31885

[Phplib-trackers] [ phplib-Feature Requests-655573 ] add .php at last in the extension

From: <no...@so...> - 2002-12-18 15:43:19

Feature Requests item #655573, was opened at 2002-12-18 00:25
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403614&aid=655573&group_id=31885

Category: Interface Improvements (example)
Group: Next Release (example)
Status: Open
Priority: 5
Submitted By: Prachait Saxena (prachait)
Assigned to: Nobody/Anonymous (nobody)
Summary: add .php at last in the extension

Initial Comment:
Hi

Some time we put the the phplib the web directory so
when we call the phplib folder .. file names are .inc
will show the contents. 

Please change the extensions of the file as

file.inc -> file.inc.php

Hope you will consider this.


Prachait Saxena




----------------------------------------------------------------------

>Comment By: Joe Stewart (joestewart)
Date: 2002-12-18 09:43

Message:
Logged In: YES 
user_id=77269

If this is a problem for you see the linked script.  It will
change all file extensions and references as you request:

http://cvs.sourceforge.net/cgi-bin/viewcvs.cgi/phpslash/phpslash-ft/contrib/extchg.sh

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403614&aid=655573&group_id=31885

[Phplib-trackers] [ phplib-Feature Requests-655573 ] add .php at last in the extension

From: <no...@so...> - 2002-12-18 06:24:49

Feature Requests item #655573, was opened at 2002-12-18 06:25
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403614&aid=655573&group_id=31885

Category: Interface Improvements (example)
Group: Next Release (example)
Status: Open
Priority: 5
Submitted By: Prachait Saxena (prachait)
Assigned to: Nobody/Anonymous (nobody)
Summary: add .php at last in the extension

Initial Comment:
Hi

Some time we put the the phplib the web directory so
when we call the phplib folder .. file names are .inc
will show the contents. 

Please change the extensions of the file as

file.inc -> file.inc.php

Hope you will consider this.


Prachait Saxena




----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403614&aid=655573&group_id=31885

[Phplib-trackers] [ phplib-Patches-561500 ] simplified auth->start, no uid=form stat

From: <no...@so...> - 2002-12-05 17:40:46

Patches item #561500, was opened at 2002-05-28 12:35
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403613&aid=561500&group_id=31885

Category: None
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Giancarlo Pinerolo (pingus)
Assigned to: Nobody/Anonymous (nobody)
Summary: simplified auth->start, no uid=form stat

Initial Comment:
This is the new auth.inc.
You need to substitute this and the following 
page.inc.

Changes in the API are being reduced at minimum.

The explanation follows
......

I was reflecting on the rationale behind this
intermediate state, 
whenever a login or register form is showed out, The
auth object is
initialized with the
 $auth->auth[uid]='form'
This is done in method start of auth class.
Then, only if this value is set to 'form', the
$auth->mode value
(reg/log) is tested, and a registration or a login is
attempted with the
data supplied.
This too is done within the start method of class auth.
All this is not taken into account if you provide your
own auth_preauth
function.

I don't know why this intermediate state has been
coded, I suppose there
can be some safety gains, and maybe you can point me to
some. 
One I can think of is that you block
'post-and-register' submissions (in
fact is getsession-post-and-register), because that
value has to be set
to form.
What other can be the end of having that intermediate
state?
Is the end to forces you to have obtained already a
session before
sobmitting a login o register form.
As an aklternativa, to get the same, I think that you
could pass a
'session' input field, and the  that has to contain a
valid session
value

But this causes a whole lot of problems, among which:
-you cannot simply show a login or register form
anywhere, 'cause it's
input won't be taken in consideration, not being
auth[uid]=='form' 
-once a for is showed yu are stuck and need the
cancel_login button to
get clean

The auth->mode log/reg issue is very incumbrent too, at
least being it
handled from inside auth. You are stuck with the same
policy all over.
I'd prefer it to be decided by me, when I need to put
out a form. The
form should contain an input field, that can be named
'request', anv
value 'register' or 'authenticate' (the default). 
Because otherwise, when the behavior is not the
intended, we have to dig
into method $auth->start, see what 'mode' value has
arrived down to
there (and hey, there are two $mode: one is auth->mode
the other is the
get param in the url ?mode=log that should serve to
force the show of a
form different from the one stated in $auth->mode...
quite complicated
at the moment).


----------------------------------------------------------------------

>Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-12-05 17:40

Message:
Logged In: YES 
user_id=163488

Changes in auth.inc of 5 Dic 2002

Now start can accept a $request, default is ""

when request is "", it calls method check_request, and upon
the result calls a certain function(suthentìcate/login/others).
When the request is speciafied, as $auth->start("register")
also calls a certain function.
Better checked $user object unsetting, now both unath() and
logout()clear it.
5 new functions:
authenticate()
preauth()
login()
register()
check_request

Tried to place preauth in the correct place with this new
design of start. Check it please.

Gian




----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-10 01:05

Message:
Logged In: YES 
user_id=163488

eContains only the files to add to cvs php-lib-stable or 
snapshot.20021007
News:
-perm may exist before auth->start
-expire calculated at start from persistent last_renewal
instead of being inherited
-no E_NOTICE noticed
-defauth has more 'interesting variables'


----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-06 17:36

Message:
Logged In: YES 
user_id=163488

The results are really great.
latest changes over Joe's snapshot of saturday:
phplib-0.74.20021005.patches which already contains fixed
for 'browser back button' and  'user4->register of
uninitialized variables bug'

Only the new files in php/ and pages/ are in this addendum.
You must diwnload and install Joe Stewart's snapshot at

http://phplib.sourceforge.net/snapshots/
http://phplib.sourceforge.net/snapshots/phplib-0.74.20021005.patches.tar.gz

then override the needed files from this
fix php/local.inc for db user/pass
modify pages/prepend.php3 for different phplib (3/4) version
modify pages/.htaccess to try register_globals On or off
open pages/defauth.php3


CHANGES
-fixed the login_if, it accept 3 values in get param, whose
name can be spacified in the final page, and will be
automatically parser away from the get QUERY_STRING
-tere is a new $auth var, urlaction, that contains the name
of this GET variable for the shunt loop Logout_and_Relogin
click action. This is the name of the GET var (default
"again"), that will be parsed and cleaned from QUERY_STRING
on resubmit. 
-fixed session4.inc self_url(), to rely onto
HTTP_POST_VARS[Query_String] instead of env(QUERY_STRING).
this is because the HTTP_POST_VARS global can be rewritten,
and is in fact, to be cleaned and ready for loginform.
 
-a great default auth page, with logout/relogin in a single
click, or as before.

Guys, I worked months, included this cloudy sonday on it, my
head haches, and I need some glory. Please give it a try.


Gian

----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-02 14:43

Message:
Logged In: YES 
user_id=163488




----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-02 10:37

Message:
Logged In: YES 
user_id=163488

auth inc with

__sleep function (necessary for all session4+auth users)

retionalized start  method

check_feature method, checks same feature as persisted 
auth.

Fixed switch state from auth/default_auth
fixed 'nobody' loginc
eliminated session_blocking login_in_progress state 
(uid=form), can be enforced in page.inc
reviewed log/reg form request logic
and more



----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-02 10:31

Message:
Logged In: YES 
user_id=163488

page inc with the resumption bug fixed, behaves as usual 
(splashform).
For back compat cancel_login can be fixed here.



----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-02 10:28

Message:
Logged In: YES 
user_id=163488

This is the latest rationalized auth with the auth 
resumption bug fixed in page.inc, and the _sleep function 
to allow max compat with session4.

It is based on latest cvs, as of 10 Oct 2002, with the 
patest patches applied to php-lib-stable, included support 
for session4 and session4_custom

The new files with respect to the php-lib-stable are:

auth.inc
page.inc

and are provided also as separate text files

To try it, unpack under docroot, modify path in 
pages/prepend.php3, dbuser and passwd in php/local.inc



----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-09-27 00:39

Message:
Logged In: YES 
user_id=163488

This works with php 4 and register globals off. Both
blocking behaviour, SPLASH or deferred/conditional, work.

One single page inc for all cases, honours existing usage of
auth or default_auth classes

There exist a bug in actual auth resumption that prevents
phplib3 passing correctli among pages of the two types.
This should also fix that


----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-06-10 20:31

Message:
Logged In: YES 
user_id=163488

the SPLASHFORM behavior works with the unchanged
showoff.php3 example from the distribution

----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-06-10 19:49

Message:
Logged In: YES 
user_id=163488

This is the latest version.
default_auth is now a noop. Auth already does that




----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403613&aid=561500&group_id=31885

[Phplib-trackers] [ phplib-Support Requests-644000 ] Register object in a sessioin

From: <no...@so...> - 2002-11-26 09:35:45

Support Requests item #644000, was opened at 2002-11-26 01:35
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403612&aid=644000&group_id=31885

Category: None
Group: None
Status: Open
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned to: Nobody/Anonymous (nobody)
Summary: Register object  in a sessioin

Initial Comment:
Hi community,

where can i find more detaild example for session's
object registration?

Thank you!

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403612&aid=644000&group_id=31885

[Phplib-trackers] [ phplib-Patches-637860 ] OOHForms rework

From: <no...@so...> - 2002-11-13 17:05:26

Patches item #637860, was opened at 2002-11-13 17:05
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403613&aid=637860&group_id=31885

Category: None
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Rob Hutton (robhutton)
Assigned to: Nobody/Anonymous (nobody)
Summary: OOHForms rework

Initial Comment:
Attached is a rework of the oohforms library.  The API is 
cleaned up and more consistant across items and there 
have been many features added.  The html editing 
(of_htmleditor) and calendar (of_calendar) items from 
Sanisoft have been integrated also.  The only testing 
that I have done so far is represented by the 
oohformtest.php in the root directory.  Each element is 
fairly well commented at the top.  I will document if 
anyone is interested in goin forward with this cleanup.

Thanks,
Rob

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403613&aid=637860&group_id=31885

[Phplib-trackers] [ phplib-Bugs-637775 ] db_mysql function free() causes warning

From: <no...@so...> - 2002-11-13 14:00:53

Bugs item #637775, was opened at 2002-11-13 06:00
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=637775&group_id=31885

Category: DB_SQL
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned to: Nobody/Anonymous (nobody)
Summary: db_mysql function free() causes warning

Initial Comment:
When executing a second query after a query executing 
an "insert", "delete" or "update" statement using the 
same db-object, free() calls mysql_free_result() on an 
invalid resource-id.

cause: mysql_(db)_query() returns no resource_id 
but "true"/"false" on executing "insert", "delete" 
or "update" statements. query() tries to free() them.

result: php warning:
"mysql_free_result(): supplied argument is not a valid 
MySQL result resource"

(possible?) solution:
in function query():

instead of:
    # New query, discard previous result.
    if ($this->Query_ID) {
      $this->free();
    }

use:
    # New query, discard previous result.
    if ($this->Query_ID && ($this->Query_ID !==true)) {
      $this->free();
    }


----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=637775&group_id=31885

[Phplib-trackers] [ phplib-Bugs-637102 ] sess->url($url) wrong if $myurl[0]=="?"

From: <no...@so...> - 2002-11-12 12:55:40

Bugs item #637102, was opened at 2002-11-12 04:55
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=637102&group_id=31885

Category: Session
Group: 7.4pre1
Status: Open
Resolution: None
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned to: Nobody/Anonymous (nobody)
Summary: sess->url($url) wrong if  $myurl[0]=="?"

Initial Comment:
I'd give an example:

$myurl ="?someparam=XYZ";
$sessurl = $sess->url($myurl);

Result:
$sessurl => "?someparam=XYZ?MYSESSION_ID=xxxxxxxxxxx"


NOTE the *second* "?" !  This is because "?" is at
position 0 in $myurl. The problem is in sess->url()
function:

Line 193:
        $url .= ( strpos($url, "?") != false ?  "&" :
"?" ).

Must be:
        $url .= ( strpos($url, "?") !== false ?  "&" :
"?" ).

(for PHP 4.0.b3 and newer).

The best way is to use regex, though. Maybe, I don't
know. Just reporting a serious bug.

regards,
plamendp

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=637102&group_id=31885

[Phplib-trackers] [ phplib-Support Requests-636057 ] db_odbc.inc Notice: Undefined Offset

From: <no...@so...> - 2002-11-09 23:57:01

Support Requests item #636057, was opened at 2002-11-09 15:57
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403612&aid=636057&group_id=31885

Category: Install Problem (example)
Group: None
Status: Open
Priority: 5
Submitted By: Kevin Royce (kroyce)
Assigned to: Nobody/Anonymous (nobody)
Summary: db_odbc.inc Notice: Undefined Offset

Initial Comment:
The scenario - 

When I call index.php3 through the url, the session data 
gets updated in the database but I get the following 
notice:

Notice: Undefined offset: 0 in pathinfo\db_odbc.inc on 
line 86.


I have the following configuration:

WinXP (SP1)
IIS 5.1
PHP 4.2.3 - verified working properly
PHPLIB 7.4-pre1 - problem
MS Access 2002 (SP2)

Sample Database Created Manually with the following 
tables (case is accurate):

Table - active_sessions
   Column - sid - text(32)
   Column - name - text(32)
   Column - val - Memo
   Column - changed - text(14)
   Index - active_sessions_pk (sid, name)
   Index - changed (changed)

active_sessions_split
   Column - ct_sid - text(32)
   Column - ct_name - text(32)
   Column - ct_pos - text(6)
   Column - ct_val - Memo
   Column - ct_changed - text(14)
   Index - active_sessions_pk (ct_sid, ct_name, ct_pos)
   Index - changed (ct_changed)

auth_user
   Column - user_id - text(32)
   Column - user_name - text(32)
   Column - password - text(32)
   Column - perms - text(255)
   Index - auth_user_pk (user_id)
   Index - k_username (username)

auth_user_md5
   Column - user_id - text(32)
   Column - user_name - text(32)
   Column - password - text(32)
   Column - perms - text(255)
   Index - user_id (user_id)

permissions on database - iusr_machine_name has 
read & write privileges.  SELECT, INSERT, UPDATE 
and DELETE all have been run successfully from test 
scripts against other tables in the db.

PHPLIB has been unpacked and an include directory 
has been created and populated with the appropriate 
files.  Include files have been successfully included.


The offending section of code sits within the next_record 
function as follows:

  function next_record() {
    $this->Record = array();
    $stat      = odbc_fetch_into($this->Query_ID, ++$this-
>Row, &$this->Record);
    if (!$stat) {
      if ($this->Auto_Free) {
	    odbc_free_result($this->Query_ID);
        $this->Query_ID = 0;
	  };
    } else {
      // add to Record[<key>]
      $count = odbc_num_fields($this->Query_ID);
      for ($i=1; $i<=$count; $i++)
        $this->Record[strtolower(odbc_field_name ($this-
>Query_ID, $i)) ] = $this->Record[ $i - 1 ];
    }
    return $stat;
  }

Where line 86 contains the following nested in the for 
loop:

$this->Record[strtolower(odbc_field_name ($this-
>Query_ID, $i)) ] = $this->Record[ $i - 1 ];

Any help you can provide would be much appreciated.
   


----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403612&aid=636057&group_id=31885

[Phplib-trackers] [ phplib-Patches-634093 ] phplib db access for jpcache2

From: <no...@so...> - 2002-11-05 21:58:09

Patches item #634093, was opened at 2002-11-05 15:58
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403613&aid=634093&group_id=31885

Category: None
Group: None
Status: Open
Resolution: None
Priority: 1
Submitted By: Joe Stewart (joestewart)
Assigned to: Nobody/Anonymous (nobody)
Summary: phplib db access for jpcache2

Initial Comment:
jpcache2 provides for different storage types to be
plugged in.  This file - phplib.php interfaces the
phplib db access methods to jpcache.  This should
provide db abstraction to jpcache.

This is an initial test to get feedback.  It has only
been tested with mysql.

jpcache can be downloaded at:  http://www.jpcache.com

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403613&aid=634093&group_id=31885

[Phplib-trackers] [ phplib-Bugs-624559 ] Redundant HTML

From: <no...@so...> - 2002-11-01 20:56:53

Bugs item #624559, was opened at 2002-10-17 05:39
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=624559&group_id=31885

Category: DB_SQL
Group: current CVS
Status: Open
Resolution: None
Priority: 2
Submitted By: Matt (maxwell_hung)
Assigned to: Nobody/Anonymous (nobody)
Summary: Redundant HTML

Initial Comment:
The code for haltmsg() in db_mysql contains HTML table
tags that don't seem to be required.

The code to be removed is

</td></tr></table> 

from the beginning of the first printf statement.

----------------------------------------------------------------------

Comment By: Marshall Roch (exclupen)
Date: 2002-11-01 15:56

Message:
Logged In: YES 
user_id=491088

I've read that this is a "hack" of sorts to make Netscape 4
display the error since it's above the opening HTML tag.

----------------------------------------------------------------------

Comment By: Matt (maxwell_hung)
Date: 2002-10-17 05:48

Message:
Logged In: YES 
user_id=268883

seems to pass through html code
here is the code visible style

&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=624559&group_id=31885

[Phplib-trackers] [ phplib-Feature Requests-577332 ] Template caching

From: <no...@so...> - 2002-11-01 16:27:35

Feature Requests item #577332, was opened at 2002-07-04 04:32
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403614&aid=577332&group_id=31885

Category: None
Group: None
Status: Open
Priority: 5
Submitted By: Dipl.-Inform. Kai Hofmann (powerstat)
Assigned to: Nobody/Anonymous (nobody)
Summary: Template caching

Initial Comment:
It would be nice to have a kind of template output
caching to speed up template processing. For example
some template outputs will only change in 24 hours or
more.
This will not work for all templates but for a lot it
might bring significant improvement - especially in
combination with php-accelerator.
Maybe it is helpful to take a look at the "Smarty 2.x"
template engine, also please take a look at the
PHP-Accelerator Benchmarks at
http://www.phpinsider.com/benchmarks/


----------------------------------------------------------------------

>Comment By: Joe Stewart (joestewart)
Date: 2002-11-01 10:26

Message:
Logged In: YES 
user_id=77269

I thought phplib stood up pretty well on the phpinsider
benchmarks.

Another interesting set of template benchmarks:

  http://www.massassi.com/bTemplate/benchmarks/



----------------------------------------------------------------------

Comment By: Richard Archer (richardarcher)
Date: 2002-08-12 02:00

Message:
Logged In: YES 
user_id=279311

Loading in a file (or even several files) from disk won't be
the bottleneck in a typical template-based page.

The bottleneck will usually be the database accesses
required to create the content. And to a limited degree the
regex manipulations to insert the content into the template.

If you're running sessions too, you also have the PHPLIB
per-page overhead for pulling the session data out of the
database.

In the scope of PHPLIB, the usual consideration of caching
is how to *prevent* it, rather than implement it :)

 ...R.



----------------------------------------------------------------------

Comment By: Dipl.-Inform. Kai Hofmann (powerstat)
Date: 2002-08-12 01:47

Message:
Logged In: YES 
user_id=286352

I think that template caching is different from content
caching!
That because content has already filled in the template vars
and blocks.
By template caching I mean the pure template so that it must
not be loaded from disk each time - which is a performance
bottleneck!

----------------------------------------------------------------------

Comment By: Layne Weathers (layne_weathers)
Date: 2002-07-05 11:55

Message:
Logged In: YES 
user_id=278685

This is not a Template issue at all. Content caching applies 
to any page whether it's inline or template-based - even static 
HTML pages benefit from caching.

There are many caching engines out there - perhaps we can 
mention those in the documentation.

If PHPLib wants to provide a basic caching mechanism in 
8.x, let's please keep it pure.

----------------------------------------------------------------------

Comment By: Richard Archer (richardarcher)
Date: 2002-07-04 15:59

Message:
Logged In: YES 
user_id=279311

There is a patch to enable this in the file attached to:
https://sourceforge.net/tracker/index.php?func=detail&aid=450744&group_id=31885&atid=403614

This won't apply cleanly to the latest template.inc, but
should be a good starting point if you require this
functionality.

I decided against including it in the standard template.inc
because of the additional complexity... maybe I should
re-think that decision.

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403614&aid=577332&group_id=31885

[Phplib-trackers] [ phplib-Bugs-624559 ] Redundant HTML

From: <no...@so...> - 2002-10-17 10:48:08

Bugs item #624559, was opened at 2002-10-17 10:39
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=624559&group_id=31885

>Category: DB_SQL
Group: current CVS
Status: Open
Resolution: None
>Priority: 2
Submitted By: Matt (maxwell_hung)
Assigned to: Nobody/Anonymous (nobody)
Summary: Redundant HTML

Initial Comment:
The code for haltmsg() in db_mysql contains HTML table
tags that don't seem to be required.

The code to be removed is

</td></tr></table> 

from the beginning of the first printf statement.

----------------------------------------------------------------------

>Comment By: Matt (maxwell_hung)
Date: 2002-10-17 10:48

Message:
Logged In: YES 
user_id=268883

seems to pass through html code
here is the code visible style

&lt;/td&gt;&lt;/tr&gt;&lt;/table&gt;

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=624559&group_id=31885

[Phplib-trackers] [ phplib-Bugs-624559 ] Redundant HTML

From: <no...@so...> - 2002-10-17 10:39:16

Bugs item #624559, was opened at 2002-10-17 10:39
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=624559&group_id=31885

Category: Data storage container
Group: current CVS
Status: Open
Resolution: None
Priority: 5
Submitted By: Matt (maxwell_hung)
Assigned to: Nobody/Anonymous (nobody)
Summary: Redundant HTML

Initial Comment:
The code for haltmsg() in db_mysql contains HTML table
tags that don't seem to be required.

The code to be removed is

</td></tr></table> 

from the beginning of the first printf statement.

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=624559&group_id=31885

[Phplib-trackers] [ phplib-Patches-622686 ] session4 to remove *any* sid from url

From: <no...@so...> - 2002-10-13 18:49:45

Patches item #622686, was opened at 2002-10-13 18:49
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403613&aid=622686&group_id=31885

Category: None
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Giancarlo Pinerolo (pingus)
Assigned to: Nobody/Anonymous (nobody)
Summary: session4 to remove *any* sid from url

Initial Comment:
I applied this already to session.inc, and session4
misses it


The explaination is not easy, but there are cases, and
with php4 there are a lot more than with plain old
php3lib, that one can pass over a 'known sessiod id'
to some cookie-enabled client, ad this will take
precedence over the availability, and inthe past even
existance, of a cookie. Not cleaning completely the
session id string from the url makes solving that
problematic. In any case when we want to chop away eg
 
?Example_Session=xyz

we are not interested at what xyz contains, are we? We
want to chop that away i any case.

session4.inc method url()


384,385c384
< #    
"([&?])".quotemeta(urlencode($this->name))."=".$this->id."(&|$)",
<      
"([&?])".quotemeta(urlencode($this->name))."=(.)*(&|$)",
# we clean any(also
---
>      
"([&?])".quotemeta(urlencode($this->name))."=".$this->id."(&|$)",


Then I am really not expert with regex, but the concept
still applies.

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403613&aid=622686&group_id=31885

[Phplib-trackers] [ phplib-Bugs-601761 ] another default login problem

From: <no...@so...> - 2002-10-11 16:21:51

Bugs item #601761, was opened at 2002-08-29 04:26
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=601761&group_id=31885

Category: docs
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned to: Dr Tarique Sani (tarique)
Summary: another default login problem

Initial Comment:
I guess i have a Problem with the default login 
(login_if)

in the documentation on page 
http://www.sanisoft.com/phplib/manual/authAdde
dInfo.php

there is an error in the code
 <A HREF="<?php $sess->purl('$PHP_SELF?
again=yes') ?>">Relogin</A>
<<< seams to be wrong >>>

it must look like

 <A HREF="<?php $sess->purl($PHP_SELF.'?
again=yes') ?>">Relogin</A>

because the link should not look like this
http://yourweb.de/$PHP_SELF?again=yes 

but i have another problem.
If I use the relogin by failure i cant get out of it. 
What if i do not want to login because i have no 
login and would like to surf as nobody on the page ?

i cant get out of it because there is a active session 
created which i must delete on the database by 
hand :( so i could use the page as a nobody (default 
login) again.

Do i make a mistake ? or must i only place a cancel 
button on the login screen to delete the session ?



----------------------------------------------------------------------

>Comment By: Joe Stewart (joestewart)
Date: 2002-10-11 11:21

Message:
Logged In: YES 
user_id=77269

The ability to abandon a login form is corrected in the
patch submitted here:

http://sourceforge.net/tracker/index.php?func=detail&aid=561500&group_id=31885&atid=403613

Cancel button is not needed.

----------------------------------------------------------------------

Comment By: Nobody/Anonymous (nobody)
Date: 2002-10-10 19:03

Message:
Logged In: NO 

I had this problem and I think it is valid for all types of 
authentications, not just default auths. I had to add some 
code to the auth class to get around it and it seems to work 
fine now.<br>
<br>
<pre>
                .......
	$strPrevious = $strLast;
	$strLast = $_SERVER["PHP_SELF"];
	$sess->register("strLast");
	if ($strPrevious != $strLast) {
		$$cl = true;
		$sess->unregister("strLast");
	}

    # Check current auth state. Should be one of
    #  1) Not logged in (no valid auth info or auth expired)
    #  2) Logged in (valid auth info)
    #  3) Login in progress (if $$cl, revert to state 1)
    if ($this->is_authenticated()) {
</pre>

Hope this helps. If anyone else can think of a better way of 
doing this without a cancel button, please let us know.

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=601761&group_id=31885

[Phplib-trackers] [ phplib-Bugs-601761 ] another default login problem

From: <no...@so...> - 2002-10-11 00:03:29

Bugs item #601761, was opened at 2002-08-29 02:26
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=601761&group_id=31885

Category: docs
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Nobody/Anonymous (nobody)
Assigned to: Dr Tarique Sani (tarique)
Summary: another default login problem

Initial Comment:
I guess i have a Problem with the default login 
(login_if)

in the documentation on page 
http://www.sanisoft.com/phplib/manual/authAdde
dInfo.php

there is an error in the code
 <A HREF="<?php $sess->purl('$PHP_SELF?
again=yes') ?>">Relogin</A>
<<< seams to be wrong >>>

it must look like

 <A HREF="<?php $sess->purl($PHP_SELF.'?
again=yes') ?>">Relogin</A>

because the link should not look like this
http://yourweb.de/$PHP_SELF?again=yes 

but i have another problem.
If I use the relogin by failure i cant get out of it. 
What if i do not want to login because i have no 
login and would like to surf as nobody on the page ?

i cant get out of it because there is a active session 
created which i must delete on the database by 
hand :( so i could use the page as a nobody (default 
login) again.

Do i make a mistake ? or must i only place a cancel 
button on the login screen to delete the session ?



----------------------------------------------------------------------

Comment By: Nobody/Anonymous (nobody)
Date: 2002-10-10 17:03

Message:
Logged In: NO 

I had this problem and I think it is valid for all types of 
authentications, not just default auths. I had to add some 
code to the auth class to get around it and it seems to work 
fine now.<br>
<br>
<pre>
                .......
	$strPrevious = $strLast;
	$strLast = $_SERVER["PHP_SELF"];
	$sess->register("strLast");
	if ($strPrevious != $strLast) {
		$$cl = true;
		$sess->unregister("strLast");
	}

    # Check current auth state. Should be one of
    #  1) Not logged in (no valid auth info or auth expired)
    #  2) Logged in (valid auth info)
    #  3) Login in progress (if $$cl, revert to state 1)
    if ($this->is_authenticated()) {
</pre>

Hope this helps. If anyone else can think of a better way of 
doing this without a cancel button, please let us know.

----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403611&aid=601761&group_id=31885

[Phplib-trackers] [ phplib-Patches-561500 ] simplified auth->start, no uid=form stat

From: <no...@so...> - 2002-10-10 01:05:39

Patches item #561500, was opened at 2002-05-28 12:35
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403613&aid=561500&group_id=31885

Category: None
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Giancarlo Pinerolo (pingus)
Assigned to: Nobody/Anonymous (nobody)
Summary: simplified auth->start, no uid=form stat

Initial Comment:
This is the new auth.inc.
You need to substitute this and the following 
page.inc.

Changes in the API are being reduced at minimum.

The explanation follows
......

I was reflecting on the rationale behind this
intermediate state, 
whenever a login or register form is showed out, The
auth object is
initialized with the
 $auth->auth[uid]='form'
This is done in method start of auth class.
Then, only if this value is set to 'form', the
$auth->mode value
(reg/log) is tested, and a registration or a login is
attempted with the
data supplied.
This too is done within the start method of class auth.
All this is not taken into account if you provide your
own auth_preauth
function.

I don't know why this intermediate state has been
coded, I suppose there
can be some safety gains, and maybe you can point me to
some. 
One I can think of is that you block
'post-and-register' submissions (in
fact is getsession-post-and-register), because that
value has to be set
to form.
What other can be the end of having that intermediate
state?
Is the end to forces you to have obtained already a
session before
sobmitting a login o register form.
As an aklternativa, to get the same, I think that you
could pass a
'session' input field, and the  that has to contain a
valid session
value

But this causes a whole lot of problems, among which:
-you cannot simply show a login or register form
anywhere, 'cause it's
input won't be taken in consideration, not being
auth[uid]=='form' 
-once a for is showed yu are stuck and need the
cancel_login button to
get clean

The auth->mode log/reg issue is very incumbrent too, at
least being it
handled from inside auth. You are stuck with the same
policy all over.
I'd prefer it to be decided by me, when I need to put
out a form. The
form should contain an input field, that can be named
'request', anv
value 'register' or 'authenticate' (the default). 
Because otherwise, when the behavior is not the
intended, we have to dig
into method $auth->start, see what 'mode' value has
arrived down to
there (and hey, there are two $mode: one is auth->mode
the other is the
get param in the url ?mode=log that should serve to
force the show of a
form different from the one stated in $auth->mode...
quite complicated
at the moment).


----------------------------------------------------------------------

>Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-10 01:05

Message:
Logged In: YES 
user_id=163488

eContains only the files to add to cvs php-lib-stable or 
snapshot.20021007
News:
-perm may exist before auth->start
-expire calculated at start from persistent last_renewal
instead of being inherited
-no E_NOTICE noticed
-defauth has more 'interesting variables'


----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-06 17:36

Message:
Logged In: YES 
user_id=163488

The results are really great.
latest changes over Joe's snapshot of saturday:
phplib-0.74.20021005.patches which already contains fixed
for 'browser back button' and  'user4->register of
uninitialized variables bug'

Only the new files in php/ and pages/ are in this addendum.
You must diwnload and install Joe Stewart's snapshot at

http://phplib.sourceforge.net/snapshots/
http://phplib.sourceforge.net/snapshots/phplib-0.74.20021005.patches.tar.gz

then override the needed files from this
fix php/local.inc for db user/pass
modify pages/prepend.php3 for different phplib (3/4) version
modify pages/.htaccess to try register_globals On or off
open pages/defauth.php3


CHANGES
-fixed the login_if, it accept 3 values in get param, whose
name can be spacified in the final page, and will be
automatically parser away from the get QUERY_STRING
-tere is a new $auth var, urlaction, that contains the name
of this GET variable for the shunt loop Logout_and_Relogin
click action. This is the name of the GET var (default
"again"), that will be parsed and cleaned from QUERY_STRING
on resubmit. 
-fixed session4.inc self_url(), to rely onto
HTTP_POST_VARS[Query_String] instead of env(QUERY_STRING).
this is because the HTTP_POST_VARS global can be rewritten,
and is in fact, to be cleaned and ready for loginform.
 
-a great default auth page, with logout/relogin in a single
click, or as before.

Guys, I worked months, included this cloudy sonday on it, my
head haches, and I need some glory. Please give it a try.


Gian

----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-02 14:43

Message:
Logged In: YES 
user_id=163488




----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-02 10:37

Message:
Logged In: YES 
user_id=163488

auth inc with

__sleep function (necessary for all session4+auth users)

retionalized start  method

check_feature method, checks same feature as persisted 
auth.

Fixed switch state from auth/default_auth
fixed 'nobody' loginc
eliminated session_blocking login_in_progress state 
(uid=form), can be enforced in page.inc
reviewed log/reg form request logic
and more



----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-02 10:31

Message:
Logged In: YES 
user_id=163488

page inc with the resumption bug fixed, behaves as usual 
(splashform).
For back compat cancel_login can be fixed here.



----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-02 10:28

Message:
Logged In: YES 
user_id=163488

This is the latest rationalized auth with the auth 
resumption bug fixed in page.inc, and the _sleep function 
to allow max compat with session4.

It is based on latest cvs, as of 10 Oct 2002, with the 
patest patches applied to php-lib-stable, included support 
for session4 and session4_custom

The new files with respect to the php-lib-stable are:

auth.inc
page.inc

and are provided also as separate text files

To try it, unpack under docroot, modify path in 
pages/prepend.php3, dbuser and passwd in php/local.inc



----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-09-27 00:39

Message:
Logged In: YES 
user_id=163488

This works with php 4 and register globals off. Both
blocking behaviour, SPLASH or deferred/conditional, work.

One single page inc for all cases, honours existing usage of
auth or default_auth classes

There exist a bug in actual auth resumption that prevents
phplib3 passing correctli among pages of the two types.
This should also fix that


----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-06-10 20:31

Message:
Logged In: YES 
user_id=163488

the SPLASHFORM behavior works with the unchanged
showoff.php3 example from the distribution

----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-06-10 19:49

Message:
Logged In: YES 
user_id=163488

This is the latest version.
default_auth is now a noop. Auth already does that




----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403613&aid=561500&group_id=31885

[Phplib-trackers] [ phplib-Patches-561500 ] simplified auth->start, no uid=form stat

From: <no...@so...> - 2002-10-06 17:36:14

Patches item #561500, was opened at 2002-05-28 12:35
You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403613&aid=561500&group_id=31885

Category: None
Group: None
Status: Open
Resolution: None
Priority: 5
Submitted By: Giancarlo Pinerolo (pingus)
Assigned to: Nobody/Anonymous (nobody)
Summary: simplified auth->start, no uid=form stat

Initial Comment:
This is the new auth.inc.
You need to substitute this and the following 
page.inc.

Changes in the API are being reduced at minimum.

The explanation follows
......

I was reflecting on the rationale behind this
intermediate state, 
whenever a login or register form is showed out, The
auth object is
initialized with the
 $auth->auth[uid]='form'
This is done in method start of auth class.
Then, only if this value is set to 'form', the
$auth->mode value
(reg/log) is tested, and a registration or a login is
attempted with the
data supplied.
This too is done within the start method of class auth.
All this is not taken into account if you provide your
own auth_preauth
function.

I don't know why this intermediate state has been
coded, I suppose there
can be some safety gains, and maybe you can point me to
some. 
One I can think of is that you block
'post-and-register' submissions (in
fact is getsession-post-and-register), because that
value has to be set
to form.
What other can be the end of having that intermediate
state?
Is the end to forces you to have obtained already a
session before
sobmitting a login o register form.
As an aklternativa, to get the same, I think that you
could pass a
'session' input field, and the  that has to contain a
valid session
value

But this causes a whole lot of problems, among which:
-you cannot simply show a login or register form
anywhere, 'cause it's
input won't be taken in consideration, not being
auth[uid]=='form' 
-once a for is showed yu are stuck and need the
cancel_login button to
get clean

The auth->mode log/reg issue is very incumbrent too, at
least being it
handled from inside auth. You are stuck with the same
policy all over.
I'd prefer it to be decided by me, when I need to put
out a form. The
form should contain an input field, that can be named
'request', anv
value 'register' or 'authenticate' (the default). 
Because otherwise, when the behavior is not the
intended, we have to dig
into method $auth->start, see what 'mode' value has
arrived down to
there (and hey, there are two $mode: one is auth->mode
the other is the
get param in the url ?mode=log that should serve to
force the show of a
form different from the one stated in $auth->mode...
quite complicated
at the moment).


----------------------------------------------------------------------

>Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-06 17:36

Message:
Logged In: YES 
user_id=163488

The results are really great.
latest changes over Joe's snapshot of saturday:
phplib-0.74.20021005.patches which already contains fixed
for 'browser back button' and  'user4->register of
uninitialized variables bug'

Only the new files in php/ and pages/ are in this addendum.
You must diwnload and install Joe Stewart's snapshot at

http://phplib.sourceforge.net/snapshots/
http://phplib.sourceforge.net/snapshots/phplib-0.74.20021005.patches.tar.gz

then override the needed files from this
fix php/local.inc for db user/pass
modify pages/prepend.php3 for different phplib (3/4) version
modify pages/.htaccess to try register_globals On or off
open pages/defauth.php3


CHANGES
-fixed the login_if, it accept 3 values in get param, whose
name can be spacified in the final page, and will be
automatically parser away from the get QUERY_STRING
-tere is a new $auth var, urlaction, that contains the name
of this GET variable for the shunt loop Logout_and_Relogin
click action. This is the name of the GET var (default
"again"), that will be parsed and cleaned from QUERY_STRING
on resubmit. 
-fixed session4.inc self_url(), to rely onto
HTTP_POST_VARS[Query_String] instead of env(QUERY_STRING).
this is because the HTTP_POST_VARS global can be rewritten,
and is in fact, to be cleaned and ready for loginform.
 
-a great default auth page, with logout/relogin in a single
click, or as before.

Guys, I worked months, included this cloudy sonday on it, my
head haches, and I need some glory. Please give it a try.


Gian

----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-02 14:43

Message:
Logged In: YES 
user_id=163488




----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-02 10:37

Message:
Logged In: YES 
user_id=163488

auth inc with

__sleep function (necessary for all session4+auth users)

retionalized start  method

check_feature method, checks same feature as persisted 
auth.

Fixed switch state from auth/default_auth
fixed 'nobody' loginc
eliminated session_blocking login_in_progress state 
(uid=form), can be enforced in page.inc
reviewed log/reg form request logic
and more



----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-02 10:31

Message:
Logged In: YES 
user_id=163488

page inc with the resumption bug fixed, behaves as usual 
(splashform).
For back compat cancel_login can be fixed here.



----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-10-02 10:28

Message:
Logged In: YES 
user_id=163488

This is the latest rationalized auth with the auth 
resumption bug fixed in page.inc, and the _sleep function 
to allow max compat with session4.

It is based on latest cvs, as of 10 Oct 2002, with the 
patest patches applied to php-lib-stable, included support 
for session4 and session4_custom

The new files with respect to the php-lib-stable are:

auth.inc
page.inc

and are provided also as separate text files

To try it, unpack under docroot, modify path in 
pages/prepend.php3, dbuser and passwd in php/local.inc



----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-09-27 00:39

Message:
Logged In: YES 
user_id=163488

This works with php 4 and register globals off. Both
blocking behaviour, SPLASH or deferred/conditional, work.

One single page inc for all cases, honours existing usage of
auth or default_auth classes

There exist a bug in actual auth resumption that prevents
phplib3 passing correctli among pages of the two types.
This should also fix that


----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-06-10 20:31

Message:
Logged In: YES 
user_id=163488

the SPLASHFORM behavior works with the unchanged
showoff.php3 example from the distribution

----------------------------------------------------------------------

Comment By: Giancarlo Pinerolo (pingus)
Date: 2002-06-10 19:49

Message:
Logged In: YES 
user_id=163488

This is the latest version.
default_auth is now a noop. Auth already does that




----------------------------------------------------------------------

You can respond by visiting: 
https://sourceforge.net/tracker/?func=detail&atid=403613&aid=561500&group_id=31885

115 messages has been excluded from this view by a project administrator.

Flat | Threaded

<< < 1 .. 3 4 5 6 7 .. 26 > >> (Page 5 of 26)