Hi,
Now I am completely confused.
When I use MSIE I have the problem. When I use Firefox I
don't have the problem.
Solution - don't use MSIE?
Anybody out there have an idea?
Regards
Peter Sørensen/University of Southern Denmark/Email:
maspsr sdu.dk
-----Oprindelig meddelelse-----
Fra: maia-users-bouncesrenaissoft.com
[mailto:maia-users-bouncesrenaissoft.com] På vegne af
Robert LeBlanc
Sendt: 31. maj 2007 10:50
Til: maia-usersrenaissoft.com
Emne: Re: [Maia-users] Wrong account when logging in
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Peter Sørensen wrote:
> I do make sure that uid = euid when logging in.
> I have tracked down the problem to where
session_start() is called in
> xlogin.php.
>
> If I print the uid and euid just before calling session
start I get
> the correct values.
>
> session_start() change the values to the values from my
prior session
> in spite of this is a new login.
>
> How should I deal with this?
That's most likely because session_destroy() does not unset
any global variables associated with the session, or the
session cookie. At the very least, the session ID needs to
be unset, and the session cookie needs to be deleted.
Something like:
// unset all session variables
$_SESSION = array();
// delete the session cookie
if (isset($_COOKIE[session_name()])) {
setcookie(session_name(), '', time()-42000, '/');
}
// destroy the session
session_destroy();
// start your new session
session_start();
- --
Robert LeBlanc <rjlrenaissoft.com>
Renaissoft, Inc.
Maia Mailguard <http://www.maiamail
guard.com/>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
iD8DBQFGXoxJGmqOER2NHewRAmlGAJ9BgitwJeDXoFuKW1gwqymJx7LFUgCf
cP+x
tuRGymb4/KKGfa0EbTR98TQ=
=Y0kD
-----END PGP SIGNATURE-----
_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users
_______________________________________________
Maia-users mailing list
Maia-usersrenaissoft.com
http://www.renaissoft.com/mailman/listinfo/maia-users
|
