[TYPO3-project-4-3] Relogin feature
Dan Osipov
dosipov at phillyburbs.com
Sun Sep 20 17:49:51 CEST 2009
This is still an issue.
I have login configured to be superchallenged, and the challenge stored
in session doesn't match what's sent by the ExtJS box. It fails on this
condition:
$_SESSION['login_challenge'] !== $loginData['chalvalue']
class.t3lib_userauth, line 1138 (trunk)
In addition, the login box sometimes fails to appear, even though the
session has expired:
http://bugs.typo3.org/view.php?id=10800
Dan Osipov
Calkins Media
http://danosipov.com/blog/
Steffen Kamper wrote:
> Hi,
>
> on Monday i will do a bugfix session on the relogin feature.
>
> As thinking about here are some additional points, please comment or
> complete
>
> 1) only show password field (user is known for relogin). If switched to
> other user, switch back to original user.
> 2) check for openId activated, if yes - deactivate.
> 3) general config to deactivate, eg when using own login mechanism
> 4) when sessionTimeout is too small, set it to at least 360
> 5) while relogin is shown, stop the timer
>
> if you see a possibility for 2) to get it work from JS please let me know.
>
> vg Steffen
More information about the TYPO3-project-4-3
mailing list