Active
Project:
e-Commerce
Version:
5.x-4.x-dev
Component:
ec_cart
Priority:
Normal
Category:
Bug report
Assigned:
Unassigned
Reporter:
Created:
14 May 2010 at 08:47 UTC
Updated:
14 May 2010 at 10:46 UTC
After updating to version 5.x-1.7 customers loose their cart items during the payment process. I use logintoboggan to avoid interruption by waiting for opt-in. Immediatly after login e-commerce's cart that was filled before is empty. I come from version 5.x-1.1 and here it works as expected for me. I want to update because of security issues in older versions.
What can I do to to come around this?
Comments
Comment #1
hunmonk commentedLT now uses core's login finalization code, which includes a
sess_regenerate()call to avoid session fixation attacks. i'm guessing that you'll experience the same problem even if you disable LT and try it with just core's standard login procedure.so this is probably something that e-commerce actually needs to deal with.