View Issue Details

IDProjectCategoryView StatusLast Update
0006476OXID eShop (all versions)4.02. Session handlingpublic2016-10-04 10:16
Reporterkeywan.ghadami 
PriorityhighSeveritycriticalReproducibilityalways
Status resolvedResolutionfixed 
Product Version4.10.1 / 5.3.1 
Target VersionFixed in Version4.10.2 / 5.3.2 
Summary0006476: Session loss on subshops
DescriptionUser loose session sometimes in subshops,
e.g. after he adds something to basket.
often in combination with captures
Steps To Reproducevisit detail page of an article
clear all cookies
refresh the page
-> you should see the capture from the price alarm feature
-> you should have no sid cookie
add somethings to the basket
-> article should be in the minibasket
-> in network tab you should see an request for verificationimage
--> you should see with that image came a new sid cookie
click on basket
-> the basket is empty

Additional Informationreason for that is isCurrentUrl function in oxutilsserver
a fix / pull request is available

https://github.com/OXID-eSales/oxideshop_ce/pull/454/

the method can be copied into old shop versions.

There is a very similar issue in combination with modules that i will link.
TagsNo tags attached.
ThemeNot defined
BrowserNot defined
PHP VersionNot defined
MySQL VersionNot defined

Relationships

child of 0006346 acknowledgedflorian.auer isCurrentUrl in oxUtilsServer doesn't work properly for subshops 

Activities

robert blank

2016-09-30 16:47

manager   ~0011814

This behaviour cannot be reproduced in v6.0 as there is no captcha any more.

robert blank

2016-10-04 10:16

manager   ~0011817

The pull request was backported to v5.3.2. See
https://github.com/OXID-eSales/oxideshop/commit/d995177027e38373bcafab193f86fd4c13fbbb92