[TYPO3-core] RFC #0013938: Backend session is locked to useragent

Ernesto Baschny [cron IT] ernst at cron-it.de
Wed Jan 19 19:05:41 CET 2011


Dmitry Dulepov schrieb am 19.01.2011 18:52:
> Hi!
> 
> Ernesto Baschny [cron IT] wrote:
>> It is more like a new feature, because the useragent locking was never
>> configurable for the BE before. We don't want to introduce new features
>> (or configuration options) in older releases, do we?
> 
> What about removing user agent from hash? It always log out clients.
> They can't work with Backend.

I must confess I never heard this complaint. Why do user agent change
from one call to the next on on your clients? This isn't supposed to happen?

> I can keep my own private version of course but I prefer that everybody
> gets a good fix.

Understood. But disabling this security feature is just a "way around"
and I thought only useful on these development machines where you use
Firebug etc. I must confess I use Firebug a lot and it has never
happened to me.

So if it affects the customers, maybe there is another reason why they
are logged off (e.g. IE8 when switching the "compatibility mode", which
used to be a problem in older TYPO3 releases)?

Cheers,
Ernesto


More information about the TYPO3-team-core mailing list