Menu
▾
▴
Re: [Phpwiki-talk] ADMIN losses authentication
|
From: Reini U. <ru...@x-...> - 2008-01-28 22:50:30
|
2008/1/28, Detlev Droege <dr...@un...>: > jshawqwinc <jim.shaw@qu...> - 2007-12-09 22:04 wrote: > > Reini Urban wrote: > >> > >> umfan866 schrieb: > >>> Reini-- > >>> > >>> That makes perfect sense. Because for PHP I am using the pre-compiled > >>> binaries for Oracle which is a build of php-5.1.6 > >>> http://www.zend.com/products/zend_core/zend_core_for_oracle > >>> > >>> Thanks for working on it! > >> > >> I found several other people having the same problem with 5.1.6 > >> Most suggest that php.ini > >> default_charset = "iso-8859-1" > >> will help. not for me. > >> > >> php session handling is just very complicated in 5.1.6 > >> see http://bugs.php.net/bug.php?id=16263 > >> and [Session] in php.ini: > >> > >> session.save_path = "0;777;f:/prog/php/phpwiki-dev/db/516" > >> > >> ; Instead of storing all the session files in > >> ; /path, what this will do is use subdirectories N-levels deep, and > >> ; store the session data in those directories. This is useful if you > >> ; or your OS have problems with lots of files in one directory, and is > >> ; a more efficient layout for servers that handle lots of sessions. > >> ; > >> ; NOTE 1: PHP will not create this directory structure automatically. > >> ; You can use the script in the ext/session dir for that > >> ; purpose. > >> > >> Argh! So you cannot just say 1;777; > >> You have to create the subtree manually beforehand. > >> For me the session files are locked most of the time, even if the apache > >> process is killed. > >> > > > > Hi. I am having a similar problem. It seems that I'm losing authentication > > as soon as the next click. So for instance, I log in and see the message > > "Authenticated as..." but as soon as I click another link it goes right back > > to "You must log in first". I thought it might be the 5.1.6 (which I'm > > using) session bug. > > > > But I've check out my php session directory (/var/lib/php/session) and > > examined the session file contents before and after losing > > authentication...the session file is being reused and modified. And the > > problem happens with any user/browser/system. > > > > So, is this the same issue, or another thing? I've poked around for days > > and I can't make it work. > > > > Thanks for any insight you can provide. > > Jim > > Same problems here. > > I recently upgraded our server to SuSE Linux 10.3 an I'm now experiencing > the same problem. > Apache/2.2.4 (Linux/SUSE) mod_ssl/2.2.4 OpenSSL/0.9.8e PHP/5.2.5 > phpwiki-1.3.14 > To me it looks as if the session management looses the relation to > the session. It also gets confused on how is logged in after 'sign out'. > > I tried to log what gets written in Request::finish(), but calling var_export() > causes an abort due to some infinite recursion -- maybe that's the problem ? > > I'm using dba/db4 to store page and session data. I used dba/gdbm before, > but gdbm is no longer compiled in in the SuSE RPMs. I compiled my own > dba.so from the source packages with gdbm enabled. But no change either. > > I also tried the old instance based on phpwiki-1.3.11 -- no luck. > Maybe its a PHP5 problem? I also have the experience that from php-5.1.x on, their (php5) session management is not as simple as implemented and documented before. db4 is fine, even better than gdbm. maybe we should just disable our session hooks for php-5, but I already tried that USE_DB_SESSION=false and it didn't help and I fixed it by fixing some other magic php.ini var or maybe a local file permission setting. sorry, no solution yet. -- Reini Urban http://phpwiki.org/ http://murbreak.at/ http://spacemovie.mur.at/ http://helsinki.at/ |
