[pmwiki-users] Logout after editing attributes
Thomas Lederer
celok at gmx.net
Thu Feb 23 01:10:25 CST 2006
Thanks for clearing this up.
On a second look, the problem is not solved entirely. :(
Btw: i used the cookbook recipe, but deleted it now, as login/logout are
now part of the core. other parameter: ldap binding, author required,
authid displayed
While the authid vaiable seems to be deleted, the PHPSESSID Cookie still
persists, and therefore i appear to be logged out, and still appear to
have the rights, which actually is not the case.
Here is part of the footer i use:
> (:if ! authid :) [[{$Name}?action=login | Login]](:ifend:)
> (:if authid :)
> ''$[User]: [[Profiles/{$AuthId} | {$AuthId} :)]]''
> [[{$Name}?action=logout | Logout]]
> (:ifend:)
> (:if auth edit :)
> [[{$Name}?action=edit | $[Edit Page] ]]
> (:ifend:)
Now here is what happens:
1. Logged out: Login
2. Logged in: User: _handle_ | Logout | Edit Page
3. After Attr: Login | Edit Page (Which does not work.)
Sorry, much text: Actually i should ask: where can i delete the cookie
at logout.
Best Regards,
Tom
Patrick R. Michaud schrieb am 22.02.2006 15:58 Uhr:
> On Wed, Feb 22, 2006 at 03:22:39PM +0100, Thomas Lederer wrote:
>> Hello,
>>
>> another observation: Whenever i change attributes, i am logged out. Is
>> this behaviour on purpose?
>
> Yes. The reason is that many people would often set a password on
> a page, and then they would think that it "didn't work" because
> they could immediately access the page without being asked for a
> password (because they were still logged in and thus had access to
> the page).
>
> So, by clearing all of the session's passwords, it's very clear as
> to what passwords are required.
>
> Pm
>
>
More information about the pmwiki-users
mailing list