We're having a problem getting the application to use sessions properly. I've been trying to track it down, but am left with the empty feeling of failure.
Every page in the PSA folder gives the warning:
Warning: ini_set(): A session is active. You cannot change the session module's ini settings at this time. in /usr/local/apache/htdocs/test/phpSecurity/include/sessions.php on line 15
We log in, log out, etc. No sessions are being tracked, and its related to this warning as best I can figure. Unfortunately I dunno how to fix the problem...
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
If you are starting sessions in other scripts, this may be the cause of your problems. If you want to use sessions to track something in your application as well as use psa, to start the session, include the psa/include/config.php file. The only time you are required to authenticate is if you include the psa/_restrict.php file.
Therefore, if you want to store something in a session and you will later need to be logged in, include the config file to start sessions instead of using session_start. As long as you don't mess with the PSA_* keys in the session, you should be OK.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
We're having a problem getting the application to use sessions properly. I've been trying to track it down, but am left with the empty feeling of failure.
Every page in the PSA folder gives the warning:
Warning: ini_set(): A session is active. You cannot change the session module's ini settings at this time. in /usr/local/apache/htdocs/test/phpSecurity/include/sessions.php on line 15
We log in, log out, etc. No sessions are being tracked, and its related to this warning as best I can figure. Unfortunately I dunno how to fix the problem...
If you are starting sessions in other scripts, this may be the cause of your problems. If you want to use sessions to track something in your application as well as use psa, to start the session, include the psa/include/config.php file. The only time you are required to authenticate is if you include the psa/_restrict.php file.
Therefore, if you want to store something in a session and you will later need to be logged in, include the config file to start sessions instead of using session_start. As long as you don't mess with the PSA_* keys in the session, you should be OK.