ansaurus

Question

Problem with session based login after moving relevant files to site root

Answer 1

A:

Cookies are usually path relevant. Your previous sub-directory based site was probably setting the cookie (that binds the browser to the user) only for that sub-directory.

A way to fix it is to put a redirection page on the old subdir that adds a cookie to '/' and then redirects to new site on root.

krico 2010-06-03 11:14:25

Not sure I follow. That sub-directory will not exist in the final deployment.

YsoL8 2010-06-03 11:20:51

A cookie in a browser is usualy set for a specific path, so that for example the pages under /web-app-one cannot read the cookies from /web-app-two.

krico 2010-06-03 11:37:08

session.cookie_path is set to / in phpinfo. That sounds right since all the security stuff in handled in one folder.

YsoL8 2010-06-03 11:51:30

Answer 2

A:

If you change session id you will loose all data stored in previous session. You must set session name after every session start command

<?php
session_name('AnySessName');
?>

or use other mechanism to store your variables cross sessions.

GOsha 2010-06-03 11:35:01

Sorry, I mean a value called $_session['id']. Does this still apply?

YsoL8 2010-06-03 11:37:12

ok. You can write`<?php Echo $_COOKIE['UserSess']; ?>`on your page.Is it changed after reloading page?Browser is storing session identificator in cookies

GOsha 2010-06-03 11:48:28

that is not returning anything!

YsoL8 2010-06-03 11:57:47

ok. and if write <?php error_reporting(15);?> before session start wil it returns any errors? looks like seeion not started at all. or lost session. are other variables from session seen?

GOsha 2010-06-03 12:04:02

Error reporting isn't showing anything up

YsoL8 2010-06-03 12:10:10

sorry. You must call session_name BEFORE you start session)))I think that you have a new session every time reloaded page.put <?php Echo session_name(); ?> and refresh several times. Is that value chenged?

GOsha 2010-06-03 12:15:57

Now I'm seeing UserSess echoed.

YsoL8 2010-06-03 12:19:13

Is it new every time or staying the same?Now write instead $_COOKIE['UserSess']; $_SESSION['id'];is it changed? if yes - check changing or placing conditions in your code.

GOsha 2010-06-03 12:27:30

is that code correct?

YsoL8 2010-06-03 12:32:09

sorry for my english)))now we check if SESSION var reachable. What error it returns?

GOsha 2010-06-03 12:33:49

echoing $_COOKIE['UserSess']; or $_SESSION['id']; returns nothing!

YsoL8 2010-06-03 12:41:25

seems session not reachable or started.

GOsha 2010-06-03 13:20:15

Answer 3

+1 A:

krico was right in suggesting that the cookie path may be the cause (but the solution proposed seems a bit daft) however you've said that is not the case.

Check to see exactly what cookies (name, path, expiry, flags) are being set and returned by using iehttpheaders (MSIE) LiveHeaders (Firefox) or using a network sniffer like wireshark. Then ask the question again providing details of what you found out.

C.

symcbean 2010-06-03 12:08:04

as requested at http://stackoverflow.com/questions/2965878/intermitant-sessions

YsoL8 2010-06-03 12:30:36

ansaurus

tags:

views:

answers:

Problem with session based login after moving relevant files to site root

related questions