Setting the SQSESSID cookie with path "/" to deleted caused failed logins
authorstekkel <stekkel@7612ce4b-ef26-0410-bec9-ea0150e637f0>
Sat, 13 Jan 2007 16:04:20 +0000 (16:04 +0000)
committerstekkel <stekkel@7612ce4b-ef26-0410-bec9-ea0150e637f0>
Sat, 13 Jan 2007 16:04:20 +0000 (16:04 +0000)
because somehow php or the browser prefered the SQSESSID cookie with path
"/" over the SQSESSID cookie with the correct path $base_uri.

git-svn-id: https://svn.code.sf.net/p/squirrelmail/code/trunk/squirrelmail@12121 7612ce4b-ef26-0410-bec9-ea0150e637f0

include/init.php

index 6887391..b5fd164 100644 (file)
@@ -387,7 +387,9 @@ switch ($sInitLocation) {
              * because they probably belong to other php apps
              */
             if (ini_get('session.name') !== $sSessionAutostartName) {
-                sqsetcookie(ini_get('session.name'),'',0,$sCookiePath);
+                //  This does not work. Sometimes the cookie with SQSESSID=deleted and path /
+                // is picked up in webmail.php => login will fail
+                //sqsetcookie(ini_get('session.name'),'',0,$sCookiePath);
             }
         }
         break;