Project

General

Profile

Actions
Copy link

Bug #15467

closed

no login to backend possible

Added by Gaertner Datensysteme over 18 years ago. Updated about 16 years ago.

Status:
Closed
Priority:
Should have
Assignee:
Michael Stucki
Category:
-
Target version:
-
Start date:
2006-01-20
Due date:
% Done:

0%

Estimated time:
TYPO3 Version:
3.8.1
PHP Version:
4
Tags:
Complexity:
Is Regression:
Sprint Focus:

Description

On a debian linux-System with PHP Version 4.3.10-16 no login to the back end was
possible on a freshly installed typo3 (3.8.1).
(dummy-install + typo3_src)

Neither with the 'admin'-user, nor a newly created user.

The problem was solved by commenting out two lines in
class.t3lib_userauth.php

within function compareUident(...):
<snip>
if ($this->challengeStoredInCookie) {
session_start();
if ($_SESSION['login_challenge'] !== $loginData['chalvalue']) {
if ($this->writeDevLog) t3lib_div::devLog('PHP Session stored challenge "'.$_SESSION['login_challenge'].'" and submitted challenge "'.$loginData['chalvalue'].'" did not match, so authentication failed!', 't3lib_userAuth', 2);
  1. $this->logoff();
  2. return FALSE;
    }
    }
    <snip>

Lines with # where disabled to solve the problem...
BTW: It's not quiet clear to me, why $_SESSION['login_challenge'] should be set, if
the session is (possibly) just created.
(issue imported from #M2334)

Related issues 1 (0 open1 closed)

Related to TYPO3 Core - Feature #14986: Check if session_support is enabled in PHPClosedMichael Stucki2005-09-21

Actions
Actions
Copy link

Also available in: Atom PDF