phpBB 2.0.18 New session handling

Joe Belmaati · October 31, 2005, 06:50:11 AM

Hello,
is there ahack that will adapt the bridge-file/integration with phpBB to accommodate the newly imposed changes to phpBBs session handling? Right now I can't log in as an administrator, nor can anyone else log in - even though they are logged in to phpBB.
Sincerely,
Joe Belmaati

Joe Belmaati · October 31, 2005, 09:39:20 AM

A temporary fix is to de-select auto login for phpBB. However, a permanent fix would be desirable. I will try to mess with this myself.
Sincerely,
Joe

Joe Belmaati · October 31, 2005, 09:59:57 AM

Hello again,
here's a temporary hack that will work regardless of user settings. The idea is to use the sessiosn table regardless of user cookie settings.

OPEN

bridge/phpbb.inc.php

FIND

Code Select

if ($cookie_uid && !$cookie_pass && isset($HTTP_COOKIE_VARS[PHPBB_COOKIE_PREFIX . '_sid'])) {

REPLACE WITH

Code Select

// if ($cookie_uid && !$cookie_pass && isset($HTTP_COOKIE_VARS[PHPBB_COOKIE_PREFIX . '_sid'])) {

FIND

Code Select

        $sql = "SELECT user_id, username as user_name, user_level " . "FROM " . $UDB_DB_NAME_PREFIX . PHPBB_TABLE_PREFIX . PHPBB_SESSION_TABLE . " " . "INNER JOIN " . $UDB_DB_NAME_PREFIX . PHPBB_TABLE_PREFIX . PHPBB_USER_TABLE . " ON session_user_id = user_id " . "WHERE session_id='$session_id' AND session_user_id ='$cookie_uid' AND user_active='1'";
    }

REPLACE WITH

Code Select

        $sql = "SELECT user_id, username as user_name, user_level " . "FROM " . $UDB_DB_NAME_PREFIX . PHPBB_TABLE_PREFIX . PHPBB_SESSION_TABLE . " " . "INNER JOIN " . $UDB_DB_NAME_PREFIX . PHPBB_TABLE_PREFIX . PHPBB_USER_TABLE . " ON session_user_id = user_id " . "WHERE session_id='$session_id' AND session_user_id ='$cookie_uid' AND user_active='1'";
//     }

FIND

Code Select

 	else {
        $sql = "SELECT user_id, username as user_name, user_level " . "FROM " . $UDB_DB_NAME_PREFIX . PHPBB_TABLE_PREFIX . PHPBB_USER_TABLE . " " . "WHERE user_id='$cookie_uid' AND user_password='$cookie_pass' AND user_active='1'";
    }

REPLACE WITH

Code Select

/* 	else {
        $sql = "SELECT user_id, username as user_name, user_level " . "FROM " . $UDB_DB_NAME_PREFIX . PHPBB_TABLE_PREFIX . PHPBB_USER_TABLE . " " . "WHERE user_id='$cookie_uid' AND user_password='$cookie_pass' AND user_active='1'";
    }*/

laubert · November 01, 2005, 09:58:07 AM

Thank you dor theses ideas.

Quote from: Joe Belmaati on October 31, 2005, 09:39:20 AM
A temporary fix is to de-select auto login for phpBB.

It doesn't work for me

: "invalid session" when I disconnect.

What do CPG bridges coders think about the new phpbb.inc.php, posted by Joe ?

Joe Belmaati · November 01, 2005, 10:05:43 AM

Thanks for the reply, laubert
as stated in my post the fix is temporary and works on my site. I don't get the session error when logging out. My problem was that logging into phpbb did not log me into coppermine. With the hack I posted it now works. Not really sure why you would get the session error, as using the session table as per my hack would equate to handling a user that doesn't allow cookies.

littleking · November 01, 2005, 02:49:45 PM

WORKS GREAT! but... if it hit logon in cpg i get:

Notice: Undefined index: huntforums_sid in /home/httpd/vhosts/huntohio.net/httpdocs/gallery/bridge/phpbb.inc.php on line 103

line 103 = $session_id = addslashes($HTTP_COOKIE_VARS[PHPBB_COOKIE_PREFIX . '_sid']);

jaybrain · November 01, 2005, 04:28:51 PM

I just updated to 2.0.18 today, and I'm using the most recent version on cpg. Cleared cookies, and still doesn't show me as logged in with cpg when using firefox, but logs me in with IE. I get invalid session when I log out with IE.

Nibbler · November 01, 2005, 05:38:46 PM

Please see http://forum.coppermine-gallery.net/index.php?topic=23281.0

coppermine-gallery.com/forum

News:

phpBB 2.0.18 New session handling

Joe Belmaati

Joe Belmaati

Joe Belmaati

laubert

Joe Belmaati

littleking

jaybrain

Nibbler