In-Portal Issue Tracker - In-Portal CMS
|
Viewing Issue Advanced Details |
|
ID:
|
Category:
|
Type:
|
Reproducibility:
|
Date Submitted:
|
Last Update:
|
930 |
[In-Portal CMS] Data Management |
task |
always |
2010-11-19 06:14 |
2011-03-30 09:53 |
|
Reporter:
|
alex |
Platform:
|
|
|
Assigned To:
|
alex |
OS:
|
|
|
Priority:
|
normal |
OS Version:
|
|
|
Status:
|
closed |
Product Version:
|
5.1.1-RC1 |
|
Product Build:
|
|
Resolution:
|
fixed |
|
|
ETA:
|
none |
Fixed in Version:
|
5.1.2-B1 |
|
Reference:
|
http://groups.google.com/group/in-portal-dev/browse_thread/thread/ba0ead02b4036ada |
Change Log Message:
|
Removed initial session creation in Admin Console |
Estimate Points:
|
0 |
|
Summary:
|
0000930: Don't create session in admin console, until admin has logged-in |
Description:
|
On Front-end In-Portal don't create empty session (records in UserSession and SessionData tables) until there is need to write something into it (e.g. user_id of logged-in user).
Why we don't have same type protection against too much unused sessions being created in admin console too.
For example I don't have ability to enable cookies and I'm just refreshing admin console login screen. New session will be created each time I do so.
Also, when I need to ask something from admin console via CURL request, then also session is created. |
Steps To Reproduce:
|
|
Additional Information:
|
|
Relationships | parent of | 0000573 | closed (5.1.2) | | Session Expiration Message for Non-Logged-in users in Admin |
|
Attached Files:
|
dont_create_admin_session_when_not_logged_in.patch (5,732) 2010-11-19 06:14 http://tracker.in-portal.org/file_download.php?file_id=848&type=bug |
|
Issue History |
Date Modified |
Username |
Field |
Change |
2011-03-30 09:53 |
Dmitry |
Note Added: 0003346 |
|
2011-03-30 09:53 |
Dmitry |
Status |
resolved => closed |
2011-01-09 08:51 |
alex |
Note Added: 0003185 |
|
2011-01-09 08:51 |
alex |
Status |
reviewed and tested => resolved |
2011-01-09 08:51 |
alex |
Fixed in Version |
=> 5.1.2-B1 |
2011-01-09 08:51 |
alex |
Resolution |
open => fixed |
2011-01-09 08:51 |
alex |
Assigned To |
!COMMUNITY => alex |
2011-01-09 08:51 |
alex |
Changeset attached |
5.1.x r14135 |
2010-12-06 12:55 |
alex |
Relationship added |
parent of 0000573 |
2010-11-21 15:50 |
Dmitry |
Note Added: 0002988 |
|
2010-11-21 15:50 |
Dmitry |
Status |
needs testing => reviewed and tested |
2010-11-19 06:15 |
alex |
Note Added: 0002980 |
|
2010-11-19 06:15 |
alex |
Assigned To |
=> !COMMUNITY |
2010-11-19 06:15 |
alex |
Developer |
=> alex |
2010-11-19 06:15 |
alex |
Status |
active => needs testing |
2010-11-19 06:14 |
alex |
New Issue |
|
2010-11-19 06:14 |
alex |
File Added: dont_create_admin_session_when_not_logged_in.patch |
|
2010-11-19 06:14 |
alex |
Reference |
=> http://groups.google.com/group/in-portal-dev/browse_thread/thread/ba0ead02b4036ada |
2010-11-19 06:14 |
alex |
Change Log Message |
=> Removed initial session creation in Admin Console |
Notes |
|
(0002980)
|
alex
|
2010-11-19 06:15
|
|
Also fixed:
* DELETE database queries were issued on SessionData table, while there was no session created at that time
* Session was created, even while checking, that user is able to login in DryMode (no login is made) via "UserHelper::loginUser" method.
|
|
|
(0002988)
|
Dmitry
|
2010-11-21 15:50
|
|
|
|
(0003185)
|
alex
|
2011-01-09 08:51
|
|
Fix committed to 5.1.x branch. Commit Message:
Fixes 0000930: Don't create session in admin console, until admin has logged-in |
|
|
(0003346)
|
Dmitry
|
2011-03-30 09:53
|
|
Closing, since 5.1.2 release has been released. |
|