Actions
Bug #80262
closed
Expiration date of session cookies not refreshed
Start date:
2017-03-13
Due date:
% Done:
0%
Estimated time:
TYPO3 Version:
8
PHP Version:
Tags:
Complexity:
medium
Is Regression:
No
Sprint Focus:
Stabilization Sprint
Description
If a session of FE or BE is configured to run on a lifetime basis (not the default session basis), the expiration date does not get refreshed with a request, causing the cookie to expire after X seconds nevertheless a user was active or not.
In out setup, we run the following configuration:
$GLOBALS['TYPO3_CONF_VARS']['FE']['lifetime'] = 3600; $GLOBALS['TYPO3_CONF_VARS']['FE']['sessionDataLifetime'] = 3600; $GLOBALS['TYPO3_CONF_VARS']['FE']['permalogin'] = 2;
In the current case, the cookie expires after 3600 seconds without any chance to refresh the expiration date.
Updated by Andreas Kienast over 7 years ago
- Status changed from New to In Progress
Updated by Gerrit Code Review over 7 years ago
- Status changed from In Progress to Under Review
Patch set 1 for branch master of project Packages/TYPO3.CMS has been pushed to the review server.
It is available at https://review.typo3.org/52031
Updated by Andreas Kienast over 7 years ago
- Status changed from Under Review to Rejected
Updated by Andreas Kienast over 7 years ago
The real issue is caused by some badly implemented custom core patches fiddling with session internals.
Actions