At some point in time it was the intention that session ids would not
be renewed for ajax requests.
From changeset 5982: Sessions id are not longer renewed if a request
is from Ajax, or from requestAction(); When Security.level (1.2) or
CAKE_SECURITY (1.1) is set the 'high' renewing of Session id
On Nov 11, 8:15 am, Serge Rodovnichenko [EMAIL PROTECTED] wrote:
Thanks, Gwoo. This helps :-)
Where to get more information about behavour of security levels?
I think in 'high' level Cake performs a Referrer checks. This is why I
lose sessions in case described above.
It does, but that
On Nov 11, 10:37 am, AD7six [EMAIL PROTECTED] wrote:
On Nov 11, 8:15 am, Serge Rodovnichenko [EMAIL PROTECTED] wrote:
Thanks, Gwoo. This helps :-)
Where to get more information about behavour of security levels?
I think in 'high' level Cake performs a Referrer checks. This is why I
It's simple:
In your application, click on a link to one action, then click on a
link to the second action without waiting of results of first action.
Session data lost.
A heavy-loaded server and complex database query, generated by first
action/Model or slow network connection may help you to
I have had this problem before, where I click links quickly and it
blows up my session data. Are you using the database to manage your
sessions?
On Nov 10, 10:45 am, Serge Rodovnichenko [EMAIL PROTECTED] wrote:
It's simple:
In your application, click on a link to one action, then click on a
No, I store sessions in files, in /tmp directory. Database useage may
help to resolve this problem?
On 10 нояб, 22:15, validkeys [EMAIL PROTECTED] wrote:
I have had this problem before, where I click links quickly and it
blows up my session data. Are you using the database to manage your
Im not sure. I have had similar problems when using a database. Anyone
else have the same problem / advice?
On Nov 10, 12:36 pm, Serge Rodovnichenko [EMAIL PROTECTED] wrote:
No, I store sessions in files, in /tmp directory. Database useage may
help to resolve this problem?
On 10 нояб, 22:15,
Are the link ajax one ?
This, is I believe due to the security level., set it to medium. I
guess when during long queries/slow connection your second query is
there before the first one is gone ..making an hijacking session ..
On Nov 10, 10:18 pm, validkeys [EMAIL PROTECTED]
wrote:
Im not sure.
Why would a longer query make a slower speed when the query has
nothing to do with the connection.
On 11/10/2008, francky06l [EMAIL PROTECTED] wrote:
Are the link ajax one ?
This, is I believe due to the security level., set it to medium. I
guess when during long queries/slow connection your
From tracing the sql queries when using the database to store the
session data, it seems as though on every call it deletes the current
session record from the database and then inserts a new one. If you
refreshed after that first deletion but before the second insert, you
would no longer have a
It sounds like it could be a thery.
On 11/10/2008, validkeys [EMAIL PROTECTED] wrote:
From tracing the sql queries when using the database to store the
session data, it seems as though on every call it deletes the current
session record from the database and then inserts a new one. If you
thanks for the reinforcement Xavier. haha :)
On Nov 10, 6:06 pm, Xavier Mathews [EMAIL PROTECTED] wrote:
It sounds like it could be a thery.
On 11/10/2008, validkeys [EMAIL PROTECTED] wrote:
From tracing the sql queries when using the database to store the
session data, it seems as
LOL No Problem It Was The Best Responce That I Have Heard All Day.
On 11/10/2008, validkeys [EMAIL PROTECTED] wrote:
thanks for the reinforcement Xavier. haha :)
On Nov 10, 6:06 pm, Xavier Mathews [EMAIL PROTECTED] wrote:
It sounds like it could be a thery.
On 11/10/2008, validkeys [EMAIL
You may want to try setting Security.level to medium in config/core.php
--~--~-~--~~~---~--~~
You received this message because you are subscribed to the Google Groups
CakePHP group.
To post to this group, send email to cake-php@googlegroups.com
To unsubscribe
Hold On I Thought You Gave That Advice To Another Client. Thats
Spaming... Anyways Kyle And I Have This One.
On 11/10/2008, Gwoo [EMAIL PROTECTED] wrote:
You may want to try setting Security.level to medium in config/core.php
--
Xavier A. Mathews
Student/Developer/Web-Master
GG Client
This Is Not A Security Issue. Nor Is It A Php Issue. We Are Dealing
With Query And Connection Speed And Core With Ajax. Not Php!
On 11/10/2008, Frobozz [EMAIL PROTECTED] wrote:
As mentioned below you have to decrease security level in core.php.
Described behaviour is not the bug, it's a
Thanks, Gwoo. This helps :-)
Where to get more information about behavour of security levels?
I think in 'high' level Cake performs a Referrer checks. This is why I
lose sessions in case described above. What are other effects of
'high', 'medium' and 'low' security levels settings? Except a
Hi all!
I created a simple user authentication form, using session. The user
must insert name and password and then if these correspond to a know
combination the user is logged in. To check if a user is logged I used
cake session. Everything woeked fine until I tried to use php sesison
in another
if a user is logged I used
cake session. Everything woeked fine until I tried to use php sesison
in another ection of the website. I found out that the hosting hasn't
session enabled by default, so i had to set session.auto_start 1 in
the htaccess file. But now my login form doesn't work anymore
Hi Friends,
i am in a bit of trouble. Here is my directory sturture :-
htdocs-app,cake.( all cakephp's files/directories ) , myfolder
I am creating a session in one of the file in myfolder and wants to
use those session variables in cake's files.
Now i have creted an session in Cakephp's
Cake creates a new session. Check PHP session_name('identifier')
function.
Check config/core.php file. You will find CAKE_SESSION_STRING
constant. Copy the parameter into application script in myfolder
like this:
session_name('your identifier from cake');
session_start();
This way your
On Oct 9, 3:28 pm, [EMAIL PROTECTED] [EMAIL PROTECTED]
wrote:
Cake creates a new session. Check PHP session_name('identifier')
function.
Check config/core.php file. You will find CAKE_SESSION_STRING
constant. Copy the parameter into application script in myfolder
like this:
Thanks for all of you replies.
if i want to use myfolder's session in cakephp files. Then what should
i do ?
Thanks again !!
On Oct 10, 2:59 am, Travis Cline [EMAIL PROTECTED] wrote:
On Oct 9, 3:28 pm, [EMAIL PROTECTED] [EMAIL PROTECTED]
wrote:
Cake creates a new session. Check PHP
Can I use Cake without any Session, even without Zend-Session?
On 26 Jul., 22:10, gwoo [EMAIL PROTECTED] wrote:
Add Zend to your vendors directory. Write your own SessionComponent.
use vendor('Zend/Session', 'Zend/Auth'); or whatever the path to the
libs are. Create the methods you need like
On 7/27/07, Freight [EMAIL PROTECTED] wrote:
Can I use Cake without any Session, even without Zend-Session?
Did you read the section in the manual about the Session Component?
http://manual.cakephp.org/chapter/session
I suggest you try this experiment:
1) go into config/core.php
Add Zend to your vendors directory. Write your own SessionComponent.
use vendor('Zend/Session', 'Zend/Auth'); or whatever the path to the
libs are. Create the methods you need like read, write, destroy.
--~--~-~--~~~---~--~~
You received this message because you
to deactivate all the CakeSession-Functionality. Can
I deactivate Sessions in Cake or are they designed in the core? So can
I use Cake without any session-handling?
Thanks Freight
--~--~-~--~~~---~--~~
You received this message because you are subscribed
27 matches
Mail list logo