Session Problems

[fh87]

When a user clicks on a product it will quite often take them to the login screen. If the user then logs on it will return them to the login screen, and this can happen 7 or 8 times until eventually they login. Even once logged in when clicking on a product the user will be redirected back to the login screen.

 

This is on a clean installation with the session settings set as follows. The server hosting the site uses shared ssl but i dont access the site using https (sorry if this is irrelelvant, im not really sure how shared ssl works)

 

force cookie use = false

check ssl session id= true

check user agent = false

check ip address = true

prevent spider sessions =true

recreate session =false

[Guest]

@@fh87

 

This:

 

force cookie use = false

check ssl session id= true

check user agent = false

check ip address = true

prevent spider sessions =true

recreate session =false

 

In most cases should be this:

 

force cookie use = false

check ssl session id= false

check user agent = false

check ip address = true

prevent spider sessions =true

recreate session =true

 

 

 

Also, your /includes/configure.php settings may effect the log in process, especially with a shared SSL (nightmare)

 

 

 

Chris

[Jack_mcs]

When a user clicks on a product it will quite often take them to the login screen. If the user then logs on it will return them to the login screen, and this can happen 7 or 8 times until eventually they login. Even once logged in when clicking on a product the user will be redirected back to the login screen.

This is almost always due to an incorrectly setup configure file. See here.

[fh87]

I have done as dunweb suggested as well as looking at the link jack_mcs linked

 

my configure.php looks like this and is installed to the root directory of the site (/hermes/bosweb/web089/b894/ipg.mysitecou). I have followed the guide and everything looks to be correct from what i can see so not sure would be affecting the issue of returning to the login screen. I have been accessing the site through http and not worrying about using https yet still the problem occurs

 

 

<?php

define('HTTP_SERVER', 'http://www.thisismysite.co.uk');

define('HTTPS_SERVER', 'http://www.thisismysite.co.uk');

define('ENABLE_SSL', false);

define('HTTP_COOKIE_DOMAIN', '/');

define('HTTPS_COOKIE_DOMAIN', '/');

define('HTTP_COOKIE_PATH', '/');

define('HTTPS_COOKIE_PATH', '/');

define('DIR_WS_HTTP_CATALOG', '/');

define('DIR_WS_HTTPS_CATALOG', '/');

define('DIR_WS_IMAGES', 'images/');

define('DIR_WS_ICONS', DIR_WS_IMAGES . 'icons/');

define('DIR_WS_INCLUDES', 'includes/');

define('DIR_WS_FUNCTIONS', DIR_WS_INCLUDES . 'functions/');

define('DIR_WS_CLASSES', DIR_WS_INCLUDES . 'classes/');

define('DIR_WS_MODULES', DIR_WS_INCLUDES . 'modules/');

define('DIR_WS_LANGUAGES', DIR_WS_INCLUDES . 'languages/');

 

define('DIR_WS_DOWNLOAD_PUBLIC', 'pub/');

define('DIR_FS_CATALOG', '/hermes/bosweb/web089/b894/ipg.mysitecou/');

define('DIR_FS_DOWNLOAD', DIR_FS_CATALOG . 'download/');

define('DIR_FS_DOWNLOAD_PUBLIC', DIR_FS_CATALOG . 'pub/');

 

define('DB_SERVER', 'mysite.hostmysql.com');

define('DB_SERVER_USERNAME', '************');

define('DB_SERVER_PASSWORD', '************');

define('DB_DATABASE', 'scm_63456345');

define('USE_PCONNECT', 'false');

define('STORE_SESSIONS', 'mysql');

define('CFG_TIME_ZONE', 'Europe/London');

?>

[tgely]

I am not an expert of https but did you give good the define('HTTPS_SERVER', 'http://www.thisismysite.co.uk');

 

define('HTTPS_SERVER', 'https://www.thisismysite.co.uk'); would not it?

[Jack_mcs]

my configure.php looks like this and is installed to the root directory of the site (/hermes/bosweb/web089/b894/ipg.mysitecou). I have followed the guide and everything looks to be correct from what i can see so not sure would be affecting the issue of returning to the login screen. I have been accessing the site through http and not worrying about using https yet still the problem occurs

Try these changes

 define('HTTP_COOKIE_DOMAIN', '.www.thisismysite.co.uk'');
 define('HTTPS_COOKIE_DOMAIN', '.www.thisismysite.co.uk'');

You also said you were using a shared ssl but you don't have that setup so it won't work.

[fh87]

i did not worry about the https setting in configure as I am not using https. It was also my belief that having the shared ssl was just when using https on the site so when accessing the site through just standard http it should be ok?

 

I have made the following changes yet still suffer the same issue

define('HTTPS_SERVER', 'https://www.thisismysite.co.uk')

define('HTTP_COOKIE_DOMAIN', '.www.thisismysite.co.uk');

define('HTTPS_COOKIE_DOMAIN', '.www.thisismysite.co.uk');

[fh87]

Anyone else who has a problem with this

 

For some reason as I found somewhere else on this forum moving oscommerce to a sub domain and changing the config file to reflect this instantly solved the issue

[germ]

osCommerce tip #143,987: Never set "Check IP Address" to "true". Not everyone has a static IP address.