Project

General

Profile

Actions
Copy link

Bug #29927

closed

Remove occurences of session_start()

Added by Daniel Poetzinger over 12 years ago. Updated over 12 years ago.

Status:
Closed
Priority:
Should have
Assignee:
-
Category:
-
Target version:
-
Start date:
2011-09-17
Due date:
% Done:

0%

Estimated time:
TYPO3 Version:
4.6
PHP Version:
Tags:
Complexity:
Is Regression:
Sprint Focus:

Description

TYPO3 has its own session management and per default it should not be required to use an additonal PHP session.

Currently session_start() calles are spread around in the core which is really sad (that wasn't the case in earlier TYPO3 versions).
Since it opens a frontend session for every request to the page. (TYPO3 session management is more intelligent here)
This results in many tmp files (PHP session) and a default PHPSESSION cookie.

examples:
typo3/index.php: session_start()
t3lib/class.t3lib_userauth.php: session_start();
...

I understand that the phpsession is required by rsa auth (but even here the TYPO3 session could be used imho).
But it would be great if it could be removed everywhere else.

Related issues 1 (0 open1 closed)

Related to TYPO3 Core - Bug #29274: Regression on session handling for security fixClosedHelmut Hummel2011-08-26

Actions
Actions
Copy link

Also available in: Atom PDF