cookie's domain. My problem was this:
My urls on google looked like this: mysite.com/............ and on my server
I had a redirect from mysite.com to www.mysite.com. And since the my logged
in users cookie's domain was only available for www.mysite.com when someone
would click a link on google the session was getting created again or
something. So I changed to cookie's domain to .mysite.com and it all worked
fine.
I think on security level "low" there is no domain check. check php ini
variable session_domain_check or something similar to this i dont remember
now. And you can go read the session component php file under cake/libs...
there is a part where it makes many calls to ini_set()
--
View this message in context: http://cakephp.1045679.n5.nabble.com/Facebook-Session-Component-tp3047161p4760366.html
Sent from the CakePHP mailing list archive at Nabble.com.
--
Our newest site for the community: CakePHP Video Tutorials http://tv.cakephp.org
Check out the new CakePHP Questions site http://ask.cakephp.org and help others with their CakePHP related questions.
To unsubscribe from this group, send email to
cake-php+unsubscribe@googlegroups.com For more options, visit this group at http://groups.google.com/group/cake-php
No comments:
Post a Comment