Hi,
question: why cookie check is performed, if "remoteaccess" param is set?
the line (oxsession.php 636):
$blDisableCookieCheck = $myConfig->getConfigParam('blDisableCookieCheck');
should be:
$blDisableCookieCheck = $myConfig->getConfigParam(
'blDisableCookieCheck' ) || oxConfig::getParameter("remoteaccess") === true;
If you want to "hijack" a session this is nearly neccessary.
_______________________________________________
dev-general mailing list
[email protected]
http://dir.gmane.org/gmane.comp.php.oxid.general
