Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Replace session sharing to use phpbb3 only for authentication #8

Open
MasterMind2k opened this issue Feb 1, 2019 · 0 comments
Open

Replace session sharing to use phpbb3 only for authentication #8

MasterMind2k opened this issue Feb 1, 2019 · 0 comments
Assignees
@GregsCode12

Comments

@MasterMind2k
Copy link
Member

MasterMind2k commented Feb 1, 2019
edited
Loading

Sharing sessions from two separate systems is not a good idea.

We need to refactor the whole session layer, it should not be shared.

Scope:

  • use sid and PHPBB3 cookie only for verifying user was authenticated
    • please note, session cookies may not be available
  • store in it's own session cache (use the available Cache object, it could be separate)
    • we can talk offline for some ideas how to set-it up
@MasterMind2k MasterMind2k changed the title Implement session invalidation Replace session sharing to use phpbb3 only for authentication May 21, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@GregsCode12 GregsCode12

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@GregsCode12 @MasterMind2k