Advanced search  

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Pages: [1]   Go Down

Author Topic: SMF 2.0 RC5 + cpg1.5.12 logout session verification error  (Read 8844 times)

0 Members and 1 Guest are viewing this topic.

TechTitan

  • Coppermine newbie
  • Offline Offline
  • Posts: 6
SMF 2.0 RC5 + cpg1.5.12 logout session verification error
« on: March 11, 2011, 06:42:38 pm »

Hello experienced cpg users,

I'm having a little problem with logout session from cpg interface/link after bridging with SMF2.0 RC5. I keep having session verification error if try to logout from cpg.
On SMF side, the settings are as follows

a. Cookie Name : SMFCookie781
b. Default login cookies length (in minutes) : 60
c. Enable local storage of cookies : Untick
d. Use subdomain independent cookies : Untick
e. Force cookies to be secure : Untick
f. Use database driven sessions : Tick
g. Allow browsers to go back to cached pages : Tick
f. Seconds before an unused session timeout : 2880

Below is my setup

Coppermine install: http://malaysianbabywearers.org/my/gallery/
Bridging app install: http://malaysianbabywearers.org/my/forum/
Coppermine version: cpg1.5.12
Bridging app version: SMF 2.0 RC5
Test user account: user/userpass

BridgeManager settings:
Bridge app URL:  http://malaysianbabywearers.org/my/forum/
Relative path to your bridge app's config file: ../forum/
Cookie name or prefix: SMFCookie781
Use bridge app custom groups?:  1

I'd appreciate the assistance... thank you...
Logged

lurkalot

  • Administrator
  • Coppermine addict
  • *****
  • Country: gb
  • Offline Offline
  • Gender: Male
  • Posts: 933
  • +Tinyportal Support team.
Re: SMF 2.0 RC5 + cpg1.5.12 logout session verification error
« Reply #1 on: March 11, 2011, 08:18:04 pm »

"When using bridging, make sure it differs from the bridge app's cookie name."

Recommended value:  cpg15x

"This has to be a valid cookie name (no special chars, particularly no dots!) - this setting should best be left alone unless you really know your way around. After all, the cookie name doesn't matter and doesn't mean anything to the end user anyway. Let me repeat: there are many users who blindly change the cookie name to something that just doesn't make sense at all and then complain on the coppermine support board that things are not working as expected. Do not use special chars in the cookie name! In fact, don't change it at all unless you must"

Works fine with my sites running the same versions as you.  I have "Use database driven sessions" ticked though.
Logged
Running SMF 2.0.15  / Tinyportal 1.6.4, bridged with Coppermine 1.6.06, plus cpmfetch 2.0.0

TechTitan

  • Coppermine newbie
  • Offline Offline
  • Posts: 6
Re: SMF 2.0 RC5 + cpg1.5.12 logout session verification error
« Reply #2 on: March 12, 2011, 04:40:14 am »

The cpg cookie value is set to default i.e. cpg15x...

Logged

lurkalot

  • Administrator
  • Coppermine addict
  • *****
  • Country: gb
  • Offline Offline
  • Gender: Male
  • Posts: 933
  • +Tinyportal Support team.
Re: SMF 2.0 RC5 + cpg1.5.12 logout session verification error
« Reply #3 on: March 12, 2011, 09:06:27 am »

The cpg cookie value is set to default i.e. cpg15x...



Sorry, I was going on what you stated above "Cookie name or prefix: SMFCookie781"

Are you using the same database for both app's?
Logged
Running SMF 2.0.15  / Tinyportal 1.6.4, bridged with Coppermine 1.6.06, plus cpmfetch 2.0.0

TechTitan

  • Coppermine newbie
  • Offline Offline
  • Posts: 6
Re: SMF 2.0 RC5 + cpg1.5.12 logout session verification error
« Reply #4 on: March 12, 2011, 10:17:47 am »

Sorry, I was going on what you stated above "Cookie name or prefix: SMFCookie781"

Are you using the same database for both app's?


both installation uses separate database i.e. dev_smf & dev_cpg

Logged

lurkalot

  • Administrator
  • Coppermine addict
  • *****
  • Country: gb
  • Offline Offline
  • Gender: Male
  • Posts: 933
  • +Tinyportal Support team.
Re: SMF 2.0 RC5 + cpg1.5.12 logout session verification error
« Reply #5 on: March 12, 2011, 10:55:36 am »

both installation uses separate database i.e. dev_smf & dev_cpg



Hmm, reason I asked is to determine the differences with your setup, and mine.  Mine works, and yours doesn't ATM.   

I'm using the same database for both, as using separate databases used to give errors when clicking the member list etc in the gallery. 
Logged
Running SMF 2.0.15  / Tinyportal 1.6.4, bridged with Coppermine 1.6.06, plus cpmfetch 2.0.0

TechTitan

  • Coppermine newbie
  • Offline Offline
  • Posts: 6
Re: SMF 2.0 RC5 + cpg1.5.12 logout session verification error
« Reply #6 on: March 12, 2011, 02:59:01 pm »

Hmm, reason I asked is to determine the differences with your setup, and mine.  Mine works, and yours doesn't ATM.   

I'm using the same database for both, as using separate databases used to give errors when clicking the member list etc in the gallery. 

perhaps i shall try to install in a single db...   :)
Logged

Αndré

  • Administrator
  • Coppermine addict
  • *****
  • Country: de
  • Offline Offline
  • Gender: Male
  • Posts: 15765
Re: SMF 2.0 RC5 + cpg1.5.12 logout session verification error
« Reply #7 on: March 14, 2011, 04:55:12 pm »

When you use Coppermine's logout button, you'll be redirected to
Quote
http://malaysianbabywearers.org/my/forum/index.php?action=logout

When you use SMF's logout button, the link is
Quote
http://malaysianbabywearers.org/my/forum/index.php?action=logout;f1d561c7da0=25921bbc43aaaca346d8c01d527707a3

I don't know if/how it's possible to add that session data to the redirection.
Logged
Pages: [1]   Go Up
 

Page created in 0.018 seconds with 19 queries.