Closed (duplicate)
Project:
Drupal core
Version:
7.x-dev
Component:
other
Priority:
Major
Category:
Bug report
Assigned:
Unassigned
Reporter:
Created:
26 Apr 2012 at 01:05 UTC
Updated:
26 Apr 2012 at 02:55 UTC
There is a bug in the session system that will let you load a session from a row in the sessions table with a sid and ssid. But when that session is then saved back to the database, a new record is created instead of updating the existing row.
This issue is related to #575280: Impersonation when an https session exists..
This is because the messages stored in the session are being saved to the https enabled session, while the node view page is retrieving a session from the database without https support.
I'm not sure what else this patch introduces, but it does fix the problem outlined above.
| Comment | File | Size | Author |
|---|---|---|---|
| 7.x-https-session-fix.patch | 603 bytes | josh waihi |
Comments
Comment #1
catchThis looks like a duplicate of #1131986: Session handling fails on multiple switches between http / https, if you've already looked at that issue and you think it's definitely not please re-open.