David Cramblett wrote:
Hi all,
I'm trying to set up a new installation of Roundcube-RC1.1. I have
set everything up and created the database with the supplied schema.
When I try to log in, I get the error "Your session is invalid or
expired." Note that supplying an incorrect login/pass gives the
expected "login failed" message.
I tried searching for this error on the web and found one other
instance of this problem, but the cause of that problem was on IIS
(and was fixed anyway), so I don't think it is related
(http://trac.roundcube.net/trac.cgi/ticket/1483806). I get the same
behavior in both Firefox and Safari.
I have $rcmail_config['debug_level'] = 4; but are no messages
displayed besides the one mentioned above, and nothing is written to
the logs directory.
I have had another installation of Roundcube running on the same
server in another directory (and with a different DB) successfully -
from an older CVS dump in 2006.
We are running FreeBSD, MySQL 4.1.15 and lighttpd 1.4.8
Has anyone else run into this problem? Any clues as to it's cause?
Thanks in advance.
Benjamin
I am having the same issue. This is a brand new install of 0.1-rc1-1
and I keep getting "Your session is invalid or expired" when I try to
login. It is successfully creating the new user account after
authentication via imap-ssl and it is also adding a session to the
database. However, I still can not login.
David
I traced through the code (hooray open source) and was able to skirt the
issue by disabling session expiration. (comment out
$rcmail_config['session_lifetime'] or set it to '')
My research showed that the rcmail_authenticate_session() function was
being called twice per request. On the first attempt to log in (cleared
sessions table), the function returns true the first time and then false
the second time. Subsequent requests return false both times. It was
getting set to false on this line:
if (!empty($CONFIG['session_lifetime']) && isset($SESS_CHANGED) &&
$SESS_CHANGED + $CONFIG['session_lifetime']*60 < time())
$valid = false;
hence the workaround by setting changing the session_lifetime value.
Benjamin
--
Benjamin Bradley
[EMAIL PROTECTED] 1-800-672-8060 x802
-----------------------------------------------------
GAIA Host Collective, LLC http://www.gaiahost.coop
"Internet solutions from an environmentally and
socially concerned worker-owned cooperative"
general support email: [EMAIL PROTECTED]
urgent support issues: 1-800-672-8060 x0
-----------------------------------------------------
