[TYPO3-core] RFC: #17383: Open forms cannot be saved after "Relogin" (Security Token errors)

Helmut Hummel helmut.hummel at typo3.org
Sun Feb 20 14:37:25 CET 2011


Hi,

On 07.02.11 14:02, Ernesto Baschny [cron IT] wrote:

> Any news on that, Helmut?
> 
> Having the relogin-tokens fixed is an important goal for 4.5.1, as it
> seems to annoy many people. :)

Sorry it did take so long, but I had to figure out how to do it in the
best way. I catched up using your idea to put the token type into the
parameter. This way it was possible to make the replacement of the
tokens quite generic.

Now there is only one thing left where tokens will not be replaced after
relogin and that is if you have multiple windows open. This cannot be
solved for manually opened windows, but would be possible for all
windows opened by JavaScript. Nevertheless I would say this is another
topic and should be handled in another RFC.

Kind regards,
Helmut

-- 
Helmut Hummel
TYPO3 Security Team Leader

TYPO3 .... inspiring people to share!
Get involved: typo3.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 17383_v2.diff
Type: text/x-patch
Size: 12154 bytes
Desc: not available
URL: <http://lists.typo3.org/pipermail/typo3-team-core/attachments/20110220/3264d63e/attachment.bin>


More information about the TYPO3-team-core mailing list