[TYPO3-core] RFC #0013938: Backend session is locked to useragent

Ernesto Baschny [cron IT] ernst at cron-it.de
Tue Jan 18 20:52:57 CET 2011


Helmut Hummel schrieb am 18.01.2011 20:29:
> Hi,
> 
> On 03.09.10 23:14, Helmut Hummel wrote:
> 
>> On 03.09.10 21:00, Helmut Hummel wrote:
>>
>>> Additionally I moved the setting of lockHashKeyWords a bit down because
>>> it was inbetween session id retrieving/ generation.
> 
> We should get this into 4.5.
> 
> How to test:
> 
> 1. apply patch (obvious)
> 2. set $TYPO3_CONF_VARS['BE']['lockHashKeyWords'] = ''; in localconf.php
> 3. log into the backend
> 4. change your user agent e.g. with:
>    https://addons.mozilla.org/de/firefox/addon/user-agent-switcher/
> 5. confirm that you will not be loged out after the next request, like
>    it is the case without patch
> 
> Thanks.

+1 by reading and testing. Just adapted some minor wording issues in the
configuration option.

Committed to trunk, rev. 10119.

Cheers,
Ernesto



More information about the TYPO3-team-core mailing list