Joe Lauer wrote:
>
> 1.) The most common is that it appears like the session dies or disappears
> because I'll get thrown back to the login page and that only occurs when the
> session doesn't exist. I'll login once again and either the session won't
> be created or it will last for even less then the first time. That is one
> problem.
a quick couple of questions. do the development and production machines
have the same domain name? do you pop back and forth between the
machines? there is a problem that arises in this scenario.
1) server1 hands you a fresh cookie when you login that contains
your session id.
2) you visit server2 and your browser uses server1's cookie in the
Set-Cookie header because thedomain name is the same.
3) server2 does not have a session matching that cookie, so it creates
a new session and hands you a new cookie value.
4) you return back to session1 with server2's cookie value, and the same problem
occurs again.
only fix for that scenario would be some type of shared cookie server, such
as nfs (gag) and locking.
>
>
> 2.) The other problem which really freaks me out is that if two developers
> are working on the same machine -- sometimes I will hit some page on the
> site and see HIS content. I will then be able to access all of his
> information, pages, etc.. until that session dies out like in number 1.
this could be a session problem, or it could be a different programming
problem. perhaps some global variables are getting reused in the apache child,
which are then getting saved to the session. i include some subroutines via an
execute for every page. i added a debug flag. when i set the debug flag in
the subroutine, i dump the contents of the %udat to the embperl.log on entrance
and exit to each page. i think if you used a log such as this, the cause of your
problems may become more apparent.
--
___cliff [EMAIL PROTECTED]http://www.genwax.com/
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
