https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=28592
Kyle M Hall <[email protected]> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |[email protected] --- Comment #3 from Kyle M Hall <[email protected]> --- (In reply to Jonathan Druart from comment #2) > To recreate easily: > * OPAC > Login > Privacy (/cgi-bin/koha/opac-privacy.pl) > * MariaDB > delete from sessions; > * Submit the form > * Login again > > Notice the GET parameters It isn't passing a 'userid' or 'password' field back, so the code from that bug should not be trigger. My question is; are you sure the Koha FQDN you are starting at is the same FQDN as the return URL? Check your opac base url. If you are starting from a url that does not match the opac base url, this exact scenario will happen because the cookie is for one FQDN but the redirect goes back to another! Even though two FQDNs can point to the same Koha instance, they will have separate cookies and thus logging into one will not mean you are logged in to the other! -- You are receiving this mail because: You are watching all bug changes. _______________________________________________ Koha-bugs mailing list [email protected] https://lists.koha-community.org/cgi-bin/mailman/listinfo/koha-bugs website : http://www.koha-community.org/ git : http://git.koha-community.org/ bugs : http://bugs.koha-community.org/
