[pmwiki-users] UserAuth2 question...

IchBin weconsultants at gmail.com
Tue May 15 18:32:07 CDT 2007 

IchBin wrote:
> IchBin wrote:
> 
> Thomas, I wish you did not top post. It's screwing up this thread.
> 
>> pmwikidev at sigproc.de wrote:
>>> Hello,
>>>
>>> tried already to answer shortly by direct mail, but message did bounce
>>> (weconsultants at comcast.net).
>>>
>>> Your assumptions are fully correct - as admin you will have full
>>> privileges for all actions.
>>>
>>> Indeed it is almost sure that your are not logged in though the password
>>> is correct. Probably (since we had this symptom once already) your session
>>> support is somehow broken. The result is that the authentication status is
>>> forgotten over subsequent page request, so you never retain the login
>>> status though the password check was successful.
>>>
>>> As solution try to see whether all session related variables are set to
>>> sensible values in your php.ini. 
> 
>   - The key word here is "sensible". I do not have a "water mark level" 
> to say weather something is sensible with out doing a lot of research. 
> Which could be a big problem when I do not have control of the session 
> parameters when I move this to an hosting site.
> 
>>> (Session save path is set by the
>>> userauth2 module, so no need to worry abut this one. The corresponding
>>> target directory (cookbook/userauth2/session_data) needs to be writable
>>> though; permissions?) 
> 
>   -  I am testing this on my windows machine so permissions are not a 
> problem. This will be entirely different when I move this to the Linux 
> server for the masses..
> 
>>> Are session files actually written to this dir? 
> 
> - Yes I see a ton of them. Which brings up another question. Are these 
> session files automatically cycled by the recipe? Do I have to manually 
> cycle them.  I have not jumped into your code to find out.
> 
>>> Do they contain the new authentication status (username="admin")?
> 
>   - No,  not per say. None contain the phase: "username="admin". I do 
> see the admin account mentioned several times in the file.
> 
> Typical session looks like this (delim on";"):
> 
> cachestarttime|i:1179194225
> remote_addr|s:12:"66.249.72.49"
> site_identifier|s:55:"C:\wwwroot\www\pmwiki-2.2.0-beta\cookbook\userauth2.php"
> lastrevivaltime|i:1179194225
> firststarttime|i:1179194225
> prev_contentpage|s:25:"PmWiki.DocumentationIndex"
> grouppermrecords|a:1:{s:10:"GuestUsers"
> a:2:{s:6:"parent"
> s:5:"admin"
> s:5:"perms"
> a:1:{s:5:"admin"
> a:1:{i:0
> s:6:"rd_*.*"
> }}}}permqueries|a:7:{s:30:"read PmWiki.DocumentationIndex"
> b:1
> s:23:"read PmWiki.GroupHeader"
> b:1
> s:23:"read PmWiki.GroupFooter"
> b:1
> s:17:"read Site.SideBar"
> b:1
> s:31:"admin PmWiki.DocumentationIndex"
> b:0
> s:21:"read Site.PageActions"
> b:1
> s:32:"upload PmWiki.DocumentationIndex"
> b:0
> }iprangerecords|a:0:{}
> 
>>> If you have the opportunity, try to test the sessions with some
>>> alternative web app.
>>>
>>> I hope this brings the solution.
>>>
>>> Thomas
>>>
>> Sorry about my comcast email address not working. It is the correct 
>> email address. I just tested it and it is working now. I just received 
>> your two mail from different origin email addresses. What can I expect I 
>> am forced to use Comcast. I thought I had all of my mail programs 
>> delivering to my gmail email address. I guess I missed one of them.
>>
>> I will toy around with what you mentioned and thanks for replying to my 
>> questions.
>>
> 
> I did see one session that looked like this:
> 
> cachestarttime|i:1179190426;
> remote_addr|s:12:"66.249.72.49";
> site_identifier|s:55:"C:\wwwroot\www\pmwiki-2.2.0-beta\cookbook\userauth2.php";
> lastrevivaltime|i:1179190426;f
> irststarttime|i:1179190426;
> prev_contentpage|s:10:"PmWiki.FAQ";
> grouppermrecords|a:1:{s:10:"GuestUsers";
> a:2:{s:6:"parent";
> s:5:"admin";
> s:5:"perms";
> a:1:{s:5:"admin";
> a:1:{i:0;
> s:6:"rd_*.*";
> }}}}permqueries|a:49:{s:15:"read PmWiki.FAQ";
> b:1;
> s:23:"read PmWiki.GroupHeader";
> b:1;
> s:23:"read PmWiki.GroupFooter";
> b:1;
> s:27:"read Site.PageListTemplates";
> b:1;
> s:26:"ALWAYS PmWiki.BasicEditing";
> b:0;
> s:19:"ALWAYS PmWiki.Links";
> b:0;
> s:33:"ALWAYS PmWiki.TextFormattingRules";
> b:0;
> s:21:"ALWAYS PmWiki.Uploads";
> b:0;
> s:20:"ALWAYS PmWiki.Tables";
> b:0
> s:29:"ALWAYS PmWiki.TableDirectives";
> b:0;
> s:24:"ALWAYS PmWiki.WikiStyles";
> b:0;
> s:31:"ALWAYS PmWiki.WikiStyleExamples";
> b:0;
> s:28:"ALWAYS PmWiki.PageDirectives";
> b:0;
> s:31:"ALWAYS PmWiki.IncludeOtherPages";
> b:0;
> s:27:"ALWAYS PmWiki.PageVariables";
> b:0;
> s:31:"ALWAYS PmWiki.MarkupMasterIndex";
> b:0;
> s:23:"ALWAYS PmWiki.WikiGroup";
> b:0;
> s:26:"ALWAYS PmWiki.GroupHeaders";
> b:0;
> s:25:"ALWAYS PmWiki.PageHistory";
> b:0;
> s:23:"ALWAYS PmWiki.Passwords";
> b:0;
> s:23:"ALWAYS PmWiki.PageLists";
> b:0;
> s:26:"ALWAYS PmWiki.Installation";
> b:0;
> s:31:"ALWAYS PmWiki.InitialSetupTasks";
> b:0;
> s:33:"ALWAYS PmWiki.LocalCustomizations";
> b:0;
> s:19:"ALWAYS PmWiki.Skins";
> b:0;
> s:22:"ALWAYS PmWiki.Upgrades";
> b:0;
> s:28:"ALWAYS PmWiki.PasswordsAdmin";
> b:0;
> s:22:"ALWAYS PmWiki.AuthUser";
> b:0;
> s:26:"ALWAYS PmWiki.UploadsAdmin";
> b:0;
> s:35:"ALWAYS PmWiki.Internationalizations";
> b:0;
> s:28:"ALWAYS PmWiki.CustomInterMap";
> b:0;
> s:26:"ALWAYS PmWiki.CustomMarkup";
> b:0;
> s:23:"ALWAYS PmWiki.Blocklist";
> b:0;
> s:20:"ALWAYS PmWiki.Notify";
> b:0;
> s:22:"ALWAYS PmWiki.WebFeeds";
> b:0;
> s:29:"ALWAYS PmWiki.Troubleshooting";
> b:0;
> s:26:"ALWAYS PmWiki.UrlApprovals";
> b:0;
> s:23:"ALWAYS PmWiki.Variables";
> b:0;
> s:34:"ALWAYS PmWiki.UpgradingFromPmWiki1";
> b:0;
> s:26:"ALWAYS PmWiki.MailingLists";
> b:0;
> s:25:"ALWAYS PmWiki.DesignNotes";
> b:0;
> s:24:"ALWAYS PmWiki.AccessKeys";
> b:0;
> s:29:"ALWAYS PmWiki.LayoutVariables";
> b:0;
> s:22:"ALWAYS PmWiki.Security";
> b:0;
> s:27:"ALWAYS PmWiki.SkinTemplates";
> b:0;
> s:17:"read Site.SideBar";
> b:1;
> s:16:"admin PmWiki.FAQ";
> b:0;
> s:21:"read Site.PageActions";
> b:1;
> s:17:"upload PmWiki.FAQ";
> b:0;
> }iprangerecords|a:0:{};
> 

OK, I have gone thru all of the Session parameters in my PHP.ini. I am
using all of the default values except for:

session.gc_divisor              = 1000  (Default = 10)
session.hash_bits_per_character = 5 (Default = 4)

Thomas, how do my settings differ from yours?

-- Thanks in Advance... http://weconsultants.prophp.org IchBin, 
Philadelphia, Pa, USA http://ichbinquotations.awardspace.com 
______________________________________________________________________ 
'If there is one, Knowledge is the "Fountain of Youth"' -William E. 
Taylor, Regular Guy (1952-)

-- 
Thanks in Advance...           http://weconsultants.prophp.org
IchBin, Philadelphia, Pa, USA  http://ichbinquotations.awardspace.com
______________________________________________________________________
'If there is one, Knowledge is the "Fountain of Youth"'
-William E. Taylor, Regular Guy (1952-)

More information about the pmwiki-users mailing list