CPG 1.3.2 and PHPBB 2.0.4 - logout, phpBB gets empty sid CPG 1.3.2 and PHPBB 2.0.4 - logout, phpBB gets empty sid
 

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Main Menu

CPG 1.3.2 and PHPBB 2.0.4 - logout, phpBB gets empty sid

Started by Chaz, September 01, 2004, 12:14:13 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

Chaz

September 01, 2004, 12:14:13 AM
After filtering through all the messages, FAQs, etc I am still having a relatively minor little annoying problem with bridging CPG 1.3.2 and phpBB 2.0.4 - the dreaded CPG logout problem (yes, its the annoyance that wouldn't die!)

phpbb.inc.php has the right stuff...

PHPBB_COOKIE_PREFIX is same as phpBB (verified with Mozilla cookie manager)
PHPBB_LOGOUT_GET is FALSE (TRUE does not work either BTW)

cpg_redir.php in phpBB dir is according to manual, however it never gets to it because within phpBB/login.php the session id ($sid) is an empty string so I get the dreaded "Invalid_session" error.

I see the REDIR1 and REDIR2 code but how exactly how is login.php supposed to get the sid?  It isn't passed as part of the on-the-fly form submission in phpbb.inc.php (at least not in $HTTP_POST_VARS or $HTTP_GET_VARS).

Any kind words would be appreciated.  Thanks.

tanfwc

#1
September 03, 2004, 06:42:10 PM
you may want to consider upgrading your phpBB forum to 2.0.10 first. If you need help upgrading(phpBB), drop me a PM.

Things is working with one forum i install and intergrated recently.
tanfwc
[ + ] My HomePage
[ + ] GuestBook
[ + ] Photo Gallery
[ + ] Free Image Hosting

EZ

#2
September 04, 2004, 12:19:57 PM
Quote from: Chaz on September 01, 2004, 12:14:13 AM
After filtering through all the messages, FAQs, etc I am still having a relatively minor little annoying problem with bridging CPG 1.3.2 and phpBB 2.0.4 - the dreaded CPG logout problem (yes, its the annoyance that wouldn't die!)
If you really filtered through all the information, then you should have known that when you post such a problem you need to provide URL to your gallery, and user-name/password for testing.

QuotePHPBB_LOGOUT_GET is FALSE (TRUE does not work either BTW)
For phpBB 2.0.4 this should be FALSE, no point trying with TRUE.

Quotecpg_redir.php in phpBB dir is according to manual, however it never gets to it because within phpBB/login.php the session id ($sid) is an empty string so I get the dreaded "Invalid_session" error.
I see the REDIR1 and REDIR2 code but how exactly how is login.php supposed to get the sid?  It isn't passed as part of the on-the-fly form submission in phpbb.inc.php (at least not in $HTTP_POST_VARS or $HTTP_GET_VARS).
If I remember correctly, the session id is read from the cookie not from the URL (get) nor from a hidden form field (post), so you should see it in $HTTP_COOKIE_VARS. To test it I tried on my own board to remove the "sid=..." part from the URL and the board continues to work just fine.

Please post URL/name/password, your cpg_redir.php, and the relevant parts from phpbb.inc.php.

EZ.
Print
Go Up Pages1
User actions