Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: High
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
None

Description

The code in eZ\Publish\Core\REST\Server\Output\ValueObjectVisitor\UserSession sets the is_logged_in cookie using "/".

But when ez is not set up in vhost mode, the is_logged_in cookie should only be set for a path corresponding to current siteaccess, as done by legacy class ezpkernelweb.php

Attachments

Issue Links

relates to

EZP-22045 As a developer, I want user login to be fully handled by Symfony stack

Closed

EZP-22011 the tracking cookie should not be shared between siteaccesses, but it is in some cases

Open

EZP-21991 UserHash should be cached tied to user session id, not user cookies

Closed

Activity

People

Assignee:: Unassigned

Reporter:: Gaetano Giunta (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 22/Nov/13 3:14 PM

Updated:: 10/Feb/14 10:33 AM

Resolved:: 10/Feb/14 10:33 AM