You are viewing a plain text version of this content. The canonical link for it is here.
Posted to bugs@httpd.apache.org by bu...@apache.org on 2013/11/15 13:16:41 UTC
[Bug 55278] mod_session's cookie may be empty, is repeated twice
https://issues.apache.org/bugzilla/show_bug.cgi?id=55278
email_apache.org@tikon.ch changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |email_apache.org@tikon.ch
--- Comment #5 from email_apache.org@tikon.ch ---
I can confirm this behaviour, including the steady renewal of of the session
key for:
Apache 2.4.6 and mod_session_db.
My config:
...
DBDriver sqlite3
DBDParams "/apache/db/db.db"
DBDPrepareSQL "delete from session where key = %s" deletesession
DBDPrepareSQL "update session set value = %s, expiry = %lld where key = %s"
updatesession
DBDPrepareSQL "insert into session (value, expiry, key) values (%s, %lld, %s)"
insertsession
DBDPrepareSQL "select value from session where key = %s and (expiry = 0 or
expiry > %lld)" selectsession
DBDPrepareSQL "delete from session where expiry != 0 and expiry < %lld"
cleansession
<VirtualHost *:80>
ServerName vfolin.pnet.ch
RewriteEngine On
...
<Location /secured>
<RequireAll>
Require valid-user
</RequireAll>
AuthFormProvider file
AuthType form
AuthName "Reserved Area"
Session On
# This is the login page
ErrorDocument 401 /login-inline.html
# This is the file containing users login data
AuthUserFile conf/passwd
SessionDBDCookieName session path=/
SessionHeader X-Replace-Session
</Location>
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: bugs-unsubscribe@httpd.apache.org
For additional commands, e-mail: bugs-help@httpd.apache.org