Re: [Phpgroupware-developers] Remote login

[Dave Hall]

Dave Hall <address@hidden> wrote:

I have one other question ... do you use a fqdn for the server url? if
not does the lan version point to a fqdn or just a server name (ie
http://myserver/phpgroupware) ??

I think I need to write a way of testing the strlen($parts[count]-1)
maybe using a switch case on it and looking at the count also. Will come
at it fresh in the morning.  As much info as people can provide on this
the better.

Cheers

skwashd

> Bob Crandell <address@hidden> wrote:
> 
> > I applied your patch. No joy with IE 5.5sp2 and Opera 6.02.  
> > Mozilla 1.0 and Galeon
> > 1.2.5 still work.
> 
> hmmm ... i tried it on IE5.5 and it worked for me and the domain 
> on the
> cookies looked fine when i checked them on moz and n4.79.  Aaaah 
> is my
> memory playing tricks on me again or is your server 
> something.domain.com?
> Try this change on the patch:
> 
> if(strlen($parts[count($parts)-1]) == 2) // for ccTLD names
> 
> to 
> 
> if(strlen($parts[count($parts)-1]) == 3) // for TLD names with 
> subdomains
> And can you turn prompt on for the cookie accpeptance policy for both
> moz and IE and post before and after hack cookie output info.
> 
> This is a frustrating one.  I think a paramater would have made 
> this a
> bit easier ... oh well means we all learn more.
> 
> Cheers
> 
> skwashd
> > 
> > Thanks
> > 
> > Dave Hall (address@hidden) wrote*:
> > >
> > >Hey Zone,
> > >
> > >Thanks for the info ... but it is .14 latest cvs.  I had a look 
> > through>things, and I think i have found the culprit.  You are 
> > right it is a
> > >cookie issue.  I use php4 sessions.  My domain is a subdomain 
> of 
> > a ccTLD
> > >(ie myserver.mydomain.com.au).
> > >
> > >I noticed skeeter applied a patch to the php4 sessions class, 9 
> > days ago.
> > >
> > >On IE I set cookies to prompt, but when trying to login it was not
> > >trying to set any cookies, so I thought i would check what 
> > Mozilla and
> > >Netscape 4.7x were doing.  Surprisingly on Mozilla 1.1 
> > (Windoze98) it is
> > >prompting to accept cookies from domain ".com.au", N4.79 
> reports the
> > >same thing.  If those cookies are accepted it allow the login.
> > >
> > >I have tested this and posted it as a patch on savannah 
> > (allocated to
> > >skeeter), it doesn't completely comply with the guidelines ... 
> > but I was
> > >in a hurry.  Here is the code if anyone is interested:
> > >class.sessions_php4.inc.php lines 284-288 replaced with this:
> > >
> >        if (count($parts) > 2)
> > >
> >        {
> > >
> >             if(strlen($parts[count($parts)-1]) == 2) // for 
> ccTLD 
> > names>
> >            {
> > >
> >                $this->cookie_domain =
> > >'.'.$parts[count($parts)-3].'.'.$parts[count($parts)-
> > 2].'.'.$parts[count($parts)-1];
> > >
> >            }
> > >
> >            else
> > >
> >            {
> > >
> >                $this->cookie_domain =
> > >'.'.$parts[count($parts)-2].'.'.$parts[count($parts)-1];
> > >
> >            }
> > >
> >        }
> > >
> > >Or see patch the patch:
> >
>
>https://savannah.gnu.org/patch/index.php?func=detailpatch&patch_id=537&group_id=509
> > >
> > >Cheers
> > >
> > >skwashd
> > >
> > >Jason Wies <address@hidden> wrote:
> > >
> > >> Assuming you're using HEAD, then this is probably a problem with
> > >> the session changes I made.  Since your report is browser
> > >> specific, it might be a cookie problem.  First of all, go to
> > >> http://yourhost.com/phpgroupware/setup/ and complete the API
> > >> upgrade.  Chances are very high that will fix it.  If not, 
> fill in
> > >> the info below.
> > >>
> > >> Session type: db or php4
> > >> Using cookies?:
> > >> Check IP address for sessions?:
> > >> Timeout for sessions (listed in /setup/)?:
> > >> Timeout for application session data (listed in /setup/)?:
> > >> Output of "SELECT * FROM phpgw_config WHERE config_name LIKE
> > >> '%session%'"Database: MySQL or Postgres or ...
> > >> Version that is displayed in login box?:
> > >>
> > >> Jason Wies aka Zone
> > >>
> > >> On Wed, Sep 25, 2002 at 05:05:26AM +0000, Bob Crandell wrote:
> > >> > A little more info:  Using IE and Opera doesn't work.  Using
> > >> Mozilla and Galeon
> > >> > does work.
> > >> >
> > >> > Dave Hall (address@hidden) wrote*:
> > >> > >
> > >> > >Bob,
> > >> > >
> > >> > >This is strange.  I tested on the LAN last nite after 
> > running a cvs
> > >> > >update and it all worked fine.  But now trying external access
> > >> it don't
> > >> > >work.  No error nothing ... just no access :(
> > >> > >
> > >> > >Will try to look into it.  I am at uni and they run a fascist
> > >> firewall> >so I can't access my logs until late tonight my time
> > >> (GMT+10).> >
> > >> > >If you figure it out please let me know.
> > >> > >
> > >> > >Cheers
> > >> > >
> > >> > >skwashd
> > >> > >
> > >> > >Bob Crandell <address@hidden> wrote:
> > >> > >
> > >> > >> Hi,
> > >> > >>
> > >> > >> I did a CVS update yesterday and now noone can log in from
> > >> > >> outside.  The LAN side
> > >> > >> still works.  I tried turning on and off using cookies and
> > >> > >> verifying sessions.  No
> > >> > >> joy.  That's all I know to do.
> > >> > >>
> > >> > >> What do I do next?
> > >> > >>
> > >> > >> Slackware
> > >> > >> Apache
> > >> > >> MySQL
> > >> > >>
> > >> > >> Thanks
> > >> > >> --
> > >> > >> Bob Crandell

dave.hall.vcf
Description: Card for <dave.hall@mbox.com.au>