Description
Set MAX_STORED_SECRETS = 2 in auth.__init__ to simulate a problem which can occur if session cookies have been left over in wiki/data/cache/__common__/session.
The default of this var is 20. This number controls the maximum number of stored secrets, i.e. maximum number of different machines a user can use concurrently without having to log in again. (or browsers....)
It seems that if this limit is reached no new session files are created or older replaced.
If the problem occurs the user is logged in on one page and on the next page the verification of the hash fails. So he is logged off.
If you look at the session dir you do see no new created session file.
Steps to reproduce
- do this...
Example
Component selection
- general
Details
MoinMoin Version |
1.6 dev |
OS and Version |
|
Python Version |
|
Server Setup |
|
Server Details |
|
Language you are using the wiki in (set in the browser/UserPreferences) |
|
Workaround
Discussion
Plan
- Priority:
- Assigned to:
- Status: fixed for 1.6 changeset 2605:ae2d9a64c294