View Issue Details

IDProjectCategoryView StatusLast Update
0004292OXID eShop (all versions)2. ----- eShop backend (admin) -----public2012-12-10 15:34
ReporterDariusK Assigned To 
PriorityhighSeveritymajorReproducibilityalways
Status resolvedResolutionunable to reproduce 
Summary0004292: User logout after login in admin area
DescriptionAfter a successfully login in the admin area, the user will be logout and forward to the login view, if you click on any menu entry.
Steps To Reproduce1. Clear shop tmp directory;
2. Clear browser all cookies;
3. Browse to admin login page;
4. Login to admin area;
5. Delete oxeec_menu_*_xml.txt files from tmp directory;
6. Delete cookie with name "admin_sid";
7. Select other shop from select box (you will be redirected to login page);
8. Login to admin area;
9. Logout from admin area;
10. Login to admin area;
11. From now you all ways be logout from admin area when press any link from menu (stoken be old);

All links become like this one: "http://shop.lt/admin/index.php?admin_sid=ff2u38gg2jl53mjv77tbnt8dc0&stoken=6268884F&cl=shop"

oxnavigationtree::_processCachedFile() method cann'ot replace stoken value.
oxnavigationtree::_processCachedFile(){
...
return $oStr->preg_replace("@$sSearch@i", $sNewUrl, $sCacheContents);
}

preg_replace pattern is "@http\://shop\.lt/admin/index\.php\?stoken\=[A-Z0-9]+&@i"
Additional InformationError was mentioned on https://bugs.oxid-esales.com/view.php?id=2201
TagsNo tags attached.
Theme
Browser
PHP Version
Database Version

Activities

jurate.baseviciene

2012-08-02 14:48

reporter   ~0007209

Last edited: 2012-08-02 14:57

Sorry we can't reproduce such issue nor on current versions 4.5.11 neither version 4.6.3. Probably is fixed with other changes. The problem is exist only in version 4.4.2. The bug is closed as unable to reproduce.