View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0004514 | OXID eShop (all versions) | 1.05. Users | public | 2012-09-12 10:08 | 2015-05-04 15:21 |
| Reporter | [email protected] | Assigned To | |||
| Priority | high | Severity | major | Reproducibility | always |
| Status | resolved | Resolution | fixed | ||
| Product Version | 4.6.0 revision 44406 | ||||
| Target Version | 4.6.6 revision 54646 | Fixed in Version | 4.6.6 revision 54646 | ||
| Summary | 0004514: Auto Login fails when changing passwords | ||||
| Description | When auto-login is enabled, and the password is changed afterwards (by user himself or admin), auto-login fails. If SSL is enabled, the user is always redirected to the start-page. | ||||
| Steps To Reproduce | login, while checking the "remember password" checkbox. check your cookie which holds login information. change password in user settings Check cookie again: Password is not updated. Close/reopen webbrowser No auto login when ssl is active user is always redirected to startpage | ||||
| Additional Information | The method getUserCookie redirects to start page in ssl when remember me cookie is set. Login is via cookie is not possible (because password changed). Further clicks are to non-ssl sites => redirected back to startpage in ssl User can't login anymore Possible solution: In oxuser->loadActiveUser delete the cookie when login is not successfull. | ||||
| Tags | HTTPS | ||||
| Theme | Both | ||||
| Browser | All | ||||
| PHP Version | any | ||||
| Database Version | any | ||||
| related to | 0004692 | resolved | aurimas.gladutis | auto login always redirects to secure startpage |
