[dokuwiki] Re: sharing session cookies regardless of protocol (http/https)

  • From: Mike Frysinger <vapier@xxxxxxxxxx>
  • To: dokuwiki@xxxxxxxxxxxxx
  • Date: Wed, 27 Jun 2007 07:12:14 -0400

On Thursday 07 June 2007, Andreas Gohr wrote:
> On Thu, 7 Jun 2007 13:26:14 -0400
>
> Mike Frysinger <vapier@xxxxxxxxxx> wrote:
> > i'm using the 2006-11-06 release here as i havent had a chance to
> > finish updating to 2007-05-24, but looking through the code i dont
> > think things have changed ...
> >
> > i'm running dokuwiki normally via http:// ... but when accessing the
> > login page, i'd like to insert a redirect rule to send the user to
> > https:// ... this part works just fine
> >
> > the trouble is that the cookie session seems to be tied to the full
> > URI ? when perusing the https:// site, my session cookie works just
> > fine ... but if i switch over to the http://, dokuwiki thinks i'm not
> > logged in.  i tried poking through the cookie code but nothing really
> > stuck out at me ... -mike
>
> Do you use $conf['canonical'] = 1 ? There was a bug which caused the
> cookie path to be a full URL. Was fixed two days ago.

using canonical = 0 and the latest release (2007.06.27) and still have this 
trouble ... what sort of info would you need to track this down ?
-mike

Other related posts: