On Tue, 16 Nov 2004, Stefan Cars wrote:
> Ed Grimm wrote:
>> On Mon, 15 Nov 2004, Pierre Etchemaite wrote:
>>>Le lun 15 nov 2004 18:24:06 CET, Ed Grimm <[EMAIL PROTECTED]>
>>>a écrit :
>>>
>Apache::Session generates the id by doing a md5 hash on a random
>number (time () . {} . Rand() . $$
Ed Grimm wrote:
On Mon, 15 Nov 2004, Pierre Etchemaite wrote:
Le lun 15 nov 2004 18:24:06 CET, Ed Grimm <[EMAIL PROTECTED]>
a écrit :
Apache::Session generates the id by doing a md5 hash on a random
number (time () . {} . Rand() . $$) , maybe there are situation where
it generates the same id (als
Gerald Richter wrote:
How hard would it be to change the code to use a SHA or SSHA
hash instead? (Admittedly, I'm picking a more
cryptographically secure hash at psuedo-random; there may be
one that's more appropriate.) Note that I realize they take
longer to generate, but that time only happ
>
> How hard would it be to change the code to use a SHA or SSHA
> hash instead? (Admittedly, I'm picking a more
> cryptographically secure hash at psuedo-random; there may be
> one that's more appropriate.) Note that I realize they take
> longer to generate, but that time only happens at lo
On Mon, 15 Nov 2004, Pierre Etchemaite wrote:
> Le lun 15 nov 2004 18:24:06 CET, Ed Grimm <[EMAIL PROTECTED]>
> a écrit :
>
>>> Apache::Session generates the id by doing a md5 hash on a random
>>> number (time () . {} . Rand() . $$) , maybe there are situation where
>>> it generates the same id (al
Le lun 15 nov 2004 18:24:06 CET, Ed Grimm <[EMAIL PROTECTED]>
a écrit :
> > Apache::Session generates the id by doing a md5 hash on a random
> > number (time () . {} . Rand() . $$) , maybe there are situation where
> > it generates the same id (also this should normaly not happen).
>
> MD5 hash c
On Mon, 15 Nov 2004, Gerald Richter wrote:
> Hi,
>
>> The problem is that this happens maybe once or twice a month (we have
>> about 10-15 thousands login per day). So it's really hard to
>> reproduce, and as far as I understand wouldn't the closure problem
>> create this problem more often ?)
>
>
Hi,
>
> The problem is that this happens maybe once or twice a month
> (we have about 10-15 thousands login per day). So it's really
> hard to reproduce, and as far as I understand wouldn't the
> closure problem create this problem more often ?)
>
Yes, the closure problem should create the p
Hi!
The problem is that this happens maybe once or twice a month (we have
about 10-15 thousands login per day). So it's really hard to reproduce,
and as far as I understand wouldn't the closure problem create this
problem more often ?)
Kind Regards,
Stefan Cars
Gerald Richter wrote:
After readi
>
> After reading alot, I can understand why the sub's would give
> wrong results. Why the sessions would get mixed up I do not
> understand...
>
That might be the case when you keep data of a previous session in a
closure.
The other possibility would be that Apache::Session generates duplica
On Thu, Nov 11, 2004 at 11:36:50PM +0100, Stefan Cars wrote:
> > Andre Landwehr wrote:
> >Here is a thread from the time I had the problem, including
> >Geralds answer.
> >http://www.gossamer-threads.com/lists/modperl/embperl/11175#11175
> >
> >The link Gerald posted is no longer valid, but I think
Hi!
After reading alot, I can understand why the sub's would give wrong
results. Why the sessions would get mixed up I do not understand...
/S
Andre Landwehr wrote:
On Wed, Nov 10, 2004 at 10:25:24PM +0100, Stefan Cars wrote:
Correct, it seems that they are doing "do 'inc.pl'" alot, is there
aro
Hi!
Does this means that for example $udat{foo} can't be used inside a sub
that is created with sub { } and not [$ sub $] and included with the
'do' syntax ?
Kind Regards,
Stefan Cars
Andre Landwehr wrote:
On Wed, Nov 10, 2004 at 10:25:24PM +0100, Stefan Cars wrote:
Correct, it seems that they a
On Wed, Nov 10, 2004 at 10:25:24PM +0100, Stefan Cars wrote:
> Correct, it seems that they are doing "do 'inc.pl'" alot, is there
> around it or do we really need to change it to be [$ sub $] instead ? Or
> can we fix our subs to not close ?? Do you have any URL's to this ?
Here is a thread fro
On Tue, Nov 09, 2004 at 02:50:13PM +0100, Stefan Cars wrote:
> We get reports about that people sometimes in the middle of a
> registration get other peoples information. The only way I can see this
> happen (after days of investigation) is that the $udat with the
> member_id has changed in the
>
> I'm using Apache::SessionX as session manager for Embperl and running
> alot of pages in EmbperlBlocks syntax. If people don't have cookies I
> would like the sessionid to be set in the URL somehow (preferebly not
> using cgi params). Is there any people that have any input on this ?
>
Embperl
>tied(%session)->delete;
>[17175]ERR: 24: Error in Perl code: Can't call method "delete" on an
undefined
>value at /var/www/html/contact/autentication.epl line 93.
Looks like your session is not correctly setup. Use the Embperl %udat
session handling and tied(%udat) -> delete should work
Geral
Em Tue, 19 Nov 2002 15:38:12 +
Gerardo Schimpf <[EMAIL PROTECTED]> escreveu:
> Hello, I'm trying to use Sessions in embperl. I'm trying to see what
> is in the %session hash, more spesific i'm triying to print out the
> session_id ($session[_session_id]).
> My question is, how can I print out
>
> But when a broswer try a embperl page with %udat hash (for put cookies in
> browser) always embperl create a record in a Berkeley DB file.
>
> I undestand that is default for Apache::SessionX module, but how can setup
> Apache config file for support mysql, without change default in
installati
On Sun, 6 Jan 2002, Gerald Richter wrote:
>> If you use "File" you may do fine when there are 1000
>> files in your sessions directory, but will begin to
>> degrade speed as it increases. Perhaps there's a
>> subdirectory, index simulating approach I'm not aware
>> of.
>
> Apache::Session doesn'
>
> If you use "File" you may do fine when there are 1000
> files in your sessions directory, but will begin to
> degrade speed as it increases. Perhaps there's a
> subdirectory, index simulating approach I'm not aware
> of.
>
Apache::Session doesn't implement such a subdirectory schema, so you
Hi,
Your setup and code seems to be ok. Before we try to debug it further please
try to upgrade to Embperl 2.0b4 and Apache::SessionX 2.00b3, which I just
released.
Gerald
-
Gerald Richterecos electronic communication services gmbh
>
> Are you saying that ALL of the EMBPERL_SESSION_[INSERT NAME HERE]
> variables are global?
>
Yes
EMBPERL_SESSION_CLASSES
EMBPERL_SESSION_ARGS
EMBPERL_SESSION_HANDLER_CLASS
are global
EMBPERL_COOKIE_*
are _not_ global and can be set different in different contexts (By setting
a different co
Gerald!
> That's dangerous, because you can't have different values for these
> configuration directives. They are global. (Yes that's something that should
> be changed sometime, but it isn't yet). If you have different values the
> session management get's initialized with the values from the
>
> > 1.) PerlModule HTML::Embperl
>
>
>
> > For 1., put the PerlSetEnv with the session vars, before the PerlModule
> > statment in your httpd.conf
>
> I have finally managed to get session management working; I used to have
> the EMBPERL_SESSION_CLASSES and EMBPERL_SESSION_ARGS in my session
Gerald
Perfect solution once again!
Many Thanks
Steve
> Steve,
>
> the problem here is, that Apache::Session only stores the data to the
> database if it is modified, but Apache::Session only recognizes
> modifications on the first level. That means your first push works, because
> the array
Gerald!
> 1.) PerlModule HTML::Embperl
> For 1., put the PerlSetEnv with the session vars, before the PerlModule
> statment in your httpd.conf
I have finally managed to get session management working; I used to have
the EMBPERL_SESSION_CLASSES and EMBPERL_SESSION_ARGS in my without using a
Steve,
the problem here is, that Apache::Session only stores the data to the
database if it is modified, but Apache::Session only recognizes
modifications on the first level. That means your first push works, because
the array is created, the second push doesn't work because only the array is
cha
Hi
>
> Sorry about the delay to your original message - I have been travelling
for most of today
no problem...
>and am trying to narrow down the problem before wasting your time any
further.
>
.. that's even better!
> I get the following line in my messages file at startup:
> httpd-perl: [122
>
> Stupid question, but how do you make sure it's set BEFORE embperl is
> loaded?
>
You can load Embperl in three way (when using mod_perl)
1.) PerlModule HTML::Embperl
2.) in a startup file which is loaded via PerlRequire, you say use
HTML::Embperl
3.) you don't load it explicitly, the mod_per
Stupid question, but how do you make sure it's set BEFORE embperl is
loaded?
DSL
--
If we could extract all the evil from each of us,
Think of the world that we could create!
A world without anger, or violence or strife...
(From the Musical, Jekyll and Hyde)
Hi
>
> Sometimes I can retrieve data out of %udat, sometimes I can't. I tried
adding domain and path environment variables to no avail.
>
> PerlSetEnv EMBPERL_SESSION_CLASSES "MySQL Semaphore"
> PerlSetEnv EMBPERL_SESSION_ARGS "DataSource=dbi:mysql:webdata
UserName=mgmtsesh69"
> PerlSetEnv EMBPERL
> I ope this isn't a repeatedly asked question on this mailing list, but
> I am really confused about how to get sessions working for Postgres and
> Embperl 2.0b3.
This seems to be a more or less FAQ. The problem is that that there are some
issues with locking with Embperl 1.3.3 and 2.0b3 and P
Hi,
>
> here are first my comments:
>
> - it's a little bit confusing how many things I need to specify when
> installing Apache::SessionX, I'm not sury whether I need any File stuff
> etc - I mean I know I'm going to use Postgres, but new users will
> probably need a bit more explanations in th
>
> I meant posting info we should get the latest CVS tarball so you don't
> have to mail it to all of us by hand.
>
The session code is separated in a module on it's own which isn't in the cvs
yet.
Also the CVS is currently moveing form perl.apache.org to cvs.apache.org and
I didn't have tested
>
> I'm back at work (sort of) and I'm glad to see there's progress on the
> Embperl/Session front. Gerald, when there's something you want us to
> test in the CVS, would you post info to this list? I'm looking forward
> too.
>
I have done something. I send it to you with private mail. I thinks
Gerald Richter wrote:
>
> I think I will have a test version ready during next week and I send you a
> copy, so you can test it against Postgres in your environment.
Hi everybody,
I'm back at work (sort of) and I'm glad to see there's progress on the
Embperl/Session front. Gerald, when there'
>
> i get nervous about automatically committing on DESTROY.
>
That's reasonable
> I changed Store::Postgres to rollback if Transaction=>1 is given, and
> they did not explicitly call insert(), update() or remove() (which do
> a commit of their own).
>
> The "official" Store::Postgres doesn't us
On Thu, Jul 12, 2001 at 07:24:11AM +0200, Gerald Richter wrote:
> I have one question about your Postgres patch:
>
> > sub close {
> > my $self = shift;
> >
> > if ($self->{rollback_on_destroy}) {
> > # we may as well be explicit about these things..
> > $self->{dbh}->rol
Hi,
I just started to rework the session stuff, so things like Postgres should
(hopefully) work out of the box and to add some other nice features.
I have one question about your Postgres patch:
> sub close {
> my $self = shift;
>
> if ($self->{rollback_on_destroy}) {
> # we ma
>
> as i see it, the "proper" fix is to either:
>
> 1. write a Lock::Postgres class that ends the transaction on
> release_all_locks (or release_{read,write}_locks)
>
> 2. reimplement HTML::Embperl::Session to create and destroy
> Apache::Session objects, rather than reusing them. (this is how
> A
Angus Lees wrote:
>
> On Wed, May 23, 2001 at 09:11:53PM +0200, Robert wrote:
> > Is anybody here using Apache::Session/Postgres combination without
> > problems? If so, could you be so kind as to post your configuration? If
> > not, how far did you get last time you tried? Is anybody intereste
On Wed, May 23, 2001 at 09:11:53PM +0200, Robert wrote:
> Is anybody here using Apache::Session/Postgres combination without
> problems? If so, could you be so kind as to post your configuration? If
> not, how far did you get last time you tried? Is anybody interested in
> using it at all?
fin
> >Does the directory /temp/epl exists ?
> yes, there are two session files generated
>
That sounds good
> >Take a look into your web server error log, there are maybe more error
> >message.
>
> [311]SES: Embperl Session management enabled (>= 1.50)
That also looks good
> [Tue May 15 14:07:
>Does the directory /temp/epl exists ?
yes, there are two session files generated
>Take a look into your web server error log, there are maybe more error
>message.
[311]SES: Embperl Session management enabled (>= 1.50)
[Tue May 15 14:07:54 2001] [error] Can't call method "getid" on an undefined
> >you need to specify a locking class e.g.
> >
> >PerlSetEnv EMBPERL_SESSION_CLASSES "File Null"
>
>
> well, it seems don`t werk in 1.3.2-dev:
>
I use it with 1.3.2_dev on Windows, so it must work :-)
> [error] Can't call method "getid" on an undefined value at
> D:/Perl/site/lib/HTML/Embperl
>you need to specify a locking class e.g.
>
>PerlSetEnv EMBPERL_SESSION_CLASSES "File Null"
well, it seems don`t werk in 1.3.2-dev:
[error] Can't call method "getid" on an undefined value at
D:/Perl/site/lib/HTML/Embperl.pm line 1689.
Probably some problems with 'Null'. What can I use instead
>
> I need Apache::Session::File to get working on windows. I configured my
> Embperl 1.3.2-dev like this:
>
> PerlSetEnv EMBPERL_DEBUG 2100205
> PerlSetEnv EMBPERL_SESSION_CLASSES "File"
you need to specify a locking class e.g.
PerlSetEnv EMBPERL_SESSION_CLASSES "File Null"
>
> ps - how can
Yes, this helps...thanks!
Bill
On Sat, 17 Mar 2001, Gerald Richter wrote:
> > sounds to be like the EMBPERL_SESSION_ARGS are stored in global variables
> > that are initialized either at child init time or the first time a request
> is made for that child,
> > and are not reloaded on each execu
this mailing list.
>
> My thoughts,
> Joe
>
> -Original Message-
> From: ___cliff rayman___ [mailto:[EMAIL PROTECTED]]
> Sent: Friday, March 16, 2001 6:22 PM
> To: goEbusiness.com Mail Lists
> Cc: [EMAIL PROTECTED]
> Subject: Re: Sessions, MySQL, Embperl, ModPe
> sounds to be like the EMBPERL_SESSION_ARGS are stored in global variables
> that are initialized either at child init time or the first time a request
is made for that child,
> and are not reloaded on each execution of the request.
>
EMBPERL_SESSION_CLASSES and EMBPERL_SESSION_ARGS are global,
sounds to be like the EMBPERL_SESSION_ARGS are stored in global variables
that are initialized either at child init time or the first time a request is made for
that child,
and are not reloaded on each execution of the request.
not sure if it is in the docs, but obviously one session store inter
Ok, I figured out what's happeningbut not how to fix yet :)-
Each of my web server processes seems to have a different EMBPERL_SESSION_ARG
value...globally...in fact I think each Embperl Env I set is unique to each process.
I added a print out of the pid ($$) to the bottom of each page, and
Another interesting find.
I just went to clients.domain.com
Refreshed a few times, access other.domain2.com, then went back to clients.domain.com
and BAM...the session changed. The new ID that should be in the clients database, was
actually in other.domain2.com's database.
I had added EMBPER
Sorry...made a typo :)
Should be
clients.domain.com
and
other.domain2.com
So the line
> > If I go to other.domain.com, I see the correct session cookie in their
>database/table.
should read
> > If I go to other.domain2.com, I see the correct session cookie in their
>database/table.
I re
your example and your text do not match! see inline comments.
"goEbusiness.com Mail Lists" wrote:
> If I have more than one VirtualHost setup to use Embperl sessions, randomly the
>session data for one site will be lost, and then a new cookie will be set (proper
>name, etc) but to the OTHER V
I should also mention this behavior happens if Apache::DBI (for persistance
connections) is running or not.
Bill
On Fri, 16 Mar 2001, goEbusiness.com Mail Lists wrote:
> I've got a weird problem that I haven't been able to fix...
>
> This behaviour exhibits on the 2 boxes I have that have A
ction:
if (DBIc_has(imp_dbh,DBIcf_AutoCommit))
dbd_db_commit(dbh, imp_dbh);
return 1;
Tim.
--
- Original Message -
From: "Gerald Richter" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Cc: "Embeded PERL ML" <[EMAIL PROTECTED]>
Sent: Wednesday, Febr
>
> Here is what I have:
>
> PerlSetEnv EMBPERL_SESSION_CLASSES "Oracle Null"
> PerlSetEnv EMBPERL_SESSION_ARGS
"DataSource=dbi:Oracle:host=oracle;sid=tsec UserName=user Password=passwd
Commit=1"
>
Storeing sessions in Oracle was always a problem. Mike from iii reported
that he had to patch DBD::
>
> I can't seem to get this to work? I can check both %udat and %mdat,
> and I see the _session_id (they are different values), but if I assign
> anything to the hash, it doesn't seem to go beyond the page I assign
> it. I see information making it to the database, but only two rows in
> the
60 matches
Mail list logo
