ID: 25934
User updated by: php at webfreezer dot com
Reported By: php at webfreezer dot com
-Status: Feedback
+Status: Open
Bug Type: Session related
Operating System: SuSe Linux 8.1
PHP Version: 4.3.3
New Comment:
I donīt access the sessionID in the scripts directly via any $_GET or
$_POST. I only use PHPīs session_id() and session_name() functions
throughout the scripts.
After testing the current PHP snap there has been no change in the
behavior so I changed the version back to 4.3.3.
However I tried something different.
I appended &PHPSESSID={SESSIONID} to the URL so that it now looks like
"file.php?sessionID={SESSIONID}&PHPSESSID={SESSIONID}" when such a
session "loss" occured and it works!
As I stated before the session file exists and contains the correct
data so the session is kind of restored that way.
ini_get("session.name") however correctly returns "sessionID" on the
same page and ini_set("session-name", "sessionID") is of course called
prior to session_start().
So it seems as if PHP does not always correctly use the settings and
falls back to standard values.
Might ini_set values also be "remembered" by Apache processes as stated
in bug bug #25753?
I donīt know why it didnīt work some time ago when changing the session
name to PHPSESSID did not work, but since then the code has been
changed since then that might have been another problem.
Previous Comments:
------------------------------------------------------------------------
[2003-10-22 04:49:53] [EMAIL PROTECTED]
Are you accessing the session ID via globals or do you use $_GET, etc.?
This might be same issue as bug #25753 is about.
------------------------------------------------------------------------
[2003-10-22 03:03:04] php at webfreezer dot com
I`ll test the snapshot soon.
The following is the content of the .htaccess in the DocumentRoot:
php_value register_globals 0
Options -Indexes
register_globals must be set to on for the whole server because there
are other older websites that require this option so I explicitly have
to disable it for the affected website.
------------------------------------------------------------------------
[2003-10-22 02:01:38] [EMAIL PROTECTED]
Please try using this CVS snapshot:
http://snaps.php.net/php4-STABLE-latest.tar.gz
For Windows:
http://snaps.php.net/win32/php4-win32-STABLE-latest.zip
And do you set any PHP ini options in your httpd.conf / .htaccess file?
(for any vhost)
------------------------------------------------------------------------
[2003-10-21 16:11:03] php at webfreezer dot com
No, it is off:
session.use_trans_sid = 0
------------------------------------------------------------------------
[2003-10-21 15:14:18] [EMAIL PROTECTED]
You do have "session.use_trans_sid = 1" in your php.ini?
------------------------------------------------------------------------
The remainder of the comments for this report are too long. To view
the rest of the comments, please view the bug report online at
http://bugs.php.net/25934
--
Edit this bug report at http://bugs.php.net/?id=25934&edit=1
