[TYPO3-core] RFC #0013938: Backend session is locked to useragent
Markus Klein
m.klein at mfc-linz.at
Fri Sep 3 15:00:57 CEST 2010
Yes, in case of backend users this can be done individually.
But in case of frontend users this means you can choose between having happy users with working frontend login or having (hopefully a rather small group of) people with random logouts. I guess we'll never know how many browsers are affected by the issue discribed by Frederic.
And users will never complain about this issue, but will more likely stop using your website.
So for FE we should really think about disabling this check by default.
Markus
>
> Am 03.09.2010 14:36, schrieb Markus Klein:
> > Please also have a look at the (important?) notes added in the bugtracker.
> >
> > Markus
> >
> >>
> >> Am 03.09.2010 13:58, schrieb Steffen Kamper:
> >>> Hi,
> >>>
> >>> i wonder if this is the right place: you set those settings in
> >>> localconf.php, but these settings are included after config_default.
> >>>
> >>> vg Steffen
> >>
> >> Yes, in config_default you set the defaults and can then override
> >> them
> > with
> >> your settings. As I understand it, config_default gets parsed by the
> > install
> >> tool, so there the new settings are accessible only if they are in
> >> config_default.
> >
> >
> Just my personal opinion:
> I dont' think the binding to the useragent should be dropped by default.
> That can still be done individually if necessary.
>
> Björn
>
More information about the TYPO3-team-core
mailing list