Thread: [Phplib-users] Another auth peculiarity

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

If I am already logged in and run login_if(TRUE) once, then it just skips
the auth and continues.  If I refresh (run it again) then I get the login
form.

Rob Hutton
Web Safe
www.wsafe.com

Il 17:12, mercoled=EC 9 ottobre 2002, Rob Hutton ha scritto:
> If I am already logged in and run login_if(TRUE) once, then it just ski=
ps
> the auth and continues.  If I refresh (run it again) then I get the log=
in
> form.

Sorry, but we're kind of amid a way with this session4 and reg_globals of=
f,=20
so what versions/setup are you experiencing this? Are you on the cvs=20
php-lib-stable, the snapshot, or the distrib?

Gian

Another bit of information, the first time through it looks like auth is
being restarted as $auth->auth['uname'] is cleared out.

Rob Hutton
Web Safe
www.wsafe.com

**********************************************************************

Introducing Symantec Client Security - Integrated Anti-Virus,
Firewall, and Intrusion Detection for the Client.

Learn more:
http://enterprisesecurity.symantec.com/symes238.cfm?JID=2&PID=11624271

View our Symantec Client Security Demo:
http://enterprisesecurity.symantec.com/symes238.cfm?JID=3&PID=11624271

Download the Symantec Client Security Fact Sheet:
http://enterprisesecurity.symantec.com/symes238.cfm?JID=4&PID=11624271

Download the Symantec Client Security Brochure:
http://enterprisesecurity.symantec.com/symes238.cfm?JID=5&PID=11624271

> -----Original Message-----
> From: php...@li...
> [mailto:php...@li...]On Behalf Of Giancarlo
> Sent: Wednesday, October 09, 2002 11:38 AM
> To: rob...@ws...; Phplib-Users
> Subject: Re: [Phplib-users] Another auth peculiarity
>
>
> Il 17:12, mercoledì 9 ottobre 2002, Rob Hutton ha scritto:
> > If I am already logged in and run login_if(TRUE) once, then it
> just skips
> > the auth and continues.  If I refresh (run it again) then I get
> the login
> > form.
>
> Sorry, but we're kind of amid a way with this session4 and
> reg_globals off,
> so what versions/setup are you experiencing this? Are you on the cvs
> php-lib-stable, the snapshot, or the distrib?
>
> Gian
>
>
> -------------------------------------------------------
> This sf.net email is sponsored by:ThinkGeek
> Welcome to geek heaven.
> http://thinkgeek.com/sf
> _______________________________________________
> Phplib-users mailing list
> Php...@li...
> https://lists.sourceforge.net/lists/listinfo/phplib-users
>
>

Il 18:54, mercoled=EC 9 ottobre 2002, hai scritto:
> Another bit of information, the first time through it looks like auth i=
s
> being restarted as $auth->auth['uname'] is cleared out.

Sorry, but for cvs php-lib-stable, this must be quite an oldish problem, =
or a=20
mistake. I must know:

are you mixing auth and default_auth classes? What auth classes are the 2=
=20
frames using?
are you placing page_close() too on both the containing and contained fra=
mes'=20
end? This can be the first reason
Do the two frames show the same sid? (I think you said yes...)
Do you reload the two together when you post the login form in one of the=
 two?
Do you need authentication in the containing frame too ?-)

Gian

> -----Original Message-----
> From: php...@li...
> [mailto:php...@li...]On Behalf Of Giancarlo
> Sent: Wednesday, October 09, 2002 1:51 PM
> To: phplib-users
> Subject: Re: [Phplib-users] Another auth peculiarity
>
>
> Il 18:54, mercoledì 9 ottobre 2002, hai scritto:
> > Another bit of information, the first time through it looks like auth is
> > being restarted as $auth->auth['uname'] is cleared out.
>
> Sorry, but for cvs php-lib-stable, this must be quite an oldish
> problem, or a
> mistake. I must know:
>
> are you mixing auth and default_auth classes? What auth classes are the 2
> frames using?

No, litterally the same code copied from the inner to outer frame.

> are you placing page_close() too on both the containing and
> contained frames'
> end? This can be the first reason

Yes, the inner and outer frame are two different sessions. (Which may be the
problem)
ex.
{outerframe.php}
page_open();
<HTML>
<BODY>
	<IFRAME src='innerFrame.php'>
</BODY>
</HTML>
page_close();

{end outerframe.php}

{innerframe.php}
page_open();
<HTML>
<BODY>
	This is the inner frame which is another php page.
</BODY>
</HTML>
page_close();

{end innerframe.php}

> Do the two frames show the same sid? (I think you said yes...)

Yes

> Do you reload the two together when you post the login form in
> one of the two?

no, only the inner frame

> Do you need authentication in the containing frame too ?-)

yes

>
> Gian
>
Rob Hutton
Web Safe
www.wsafe.com

> > Do you reload the two together when you post the login form in
> > one of the two?
>
> no, only the inner frame
>
> > Do you need authentication in the containing frame too ?-)
>
> yes

Then you simply need to reload the outer frame too...

Gian