Bug #1948

Fatal error when tokens are retrieved from session

Added by Karsten Dambekalns about 13 years ago. Updated over 11 years ago.

Status:
Resolved
Priority:
Must have
Category:
Security
Start date:
2008-11-04
Due date:
% Done:

100%

Estimated time:
PHP Version:
Has patch:
Complexity:

Description

As soon as a session is present FLOW3 is unable to start up because of
Fatal error: Call to a member function getPOSTArguments() on a non-object in .../F3_FLOW3_Security_Authentication_Token_UsernamePassword.php on line 145

This is caused by the token trying to use $this->environment after being fetched from a PHP session in ContextHolderSession. This must be fixed ASAP, e.g. by making sure the inject* methods are called after the context holding the tokens is woken up.

In a later stage this should be using session scope with the component manager (see #1947).


Related issues

Related to TYPO3.Flow - Feature #1947: Implement session scope for object managerResolvedAndreas Förthner

Actions
#1

Updated by Andreas Förthner about 13 years ago

  • Status changed from New to Resolved
  • % Done changed from 0 to 100

Applied in changeset r1428.

Also available in: Atom PDF