Jump to content

IPBoard VATSIM SSO Logout Issue


Recommended Posts

Hi,

 

In VATSIM Scandinavia we have an issue with the VATSIM SSO on our IPBoard Forums. We have the latest SSO version. Login to the forums via the SSO works, but if the user creates a new session (ie closes their browser and opens a new browser instance to go to our forums), they have to log in again. This isn't a critical issue, but it definitely is an annoying issue for our users.

 

Does anyone have any ideas for what this may be?

Henrik Sonstebo

ACCSCA14

Web Services [Mod - Happy Thoughts]istant

VATSIM Scandinavia

Link to post
Share on other sites

Login cookies that keep the user authenticated are set as session cookies, meaning when the browser is closed (browsing session ended), the cookie is deleted. I've done a little digging, but that seems to be the way IPB does it - and not something configurable within IPB.

 

The only thing I can think of is if you were to use a local php.ini config to change the session cookie time limits.

 

I might be wrong, and someone might have another idea...

Kind Regards,

Kieran Cross,

 

28.png

Link to post
Share on other sites
Login cookies that keep the user authenticated are set as session cookies, meaning when the browser is closed (browsing session ended), the cookie is deleted. I've done a little digging, but that seems to be the way IPB does it - and not something configurable within IPB.

 

The only thing I can think of is if you were to use a local php.ini config to change the session cookie time limits.

 

I might be wrong, and someone might have another idea...

Interesting thought, however this issue only seem to happen if you use the VATSIM SSO. If you login with username and p[Mod - Happy Thoughts]word, you don't get logged out like that.

Daniel Lange

Web Services Director
Vatsim Scandinavia

[email protected]

Link to post
Share on other sites
  • 2 months later...

Same problem over here at HvACC. While the normal E-Mail form has a remember-me checkbox, and sets the appropriate cookies (login_key, member_id) with a 3Month duration, the VATSIM SSO doesn't put the login_key cookie at all, and member_id is only kept for each users session.

There is most probably a code change required, if anyone has done it, let us know how!

Anastasios Mpithas

Hellenic vACC member

C1/P1-2-3-4

Link to post
Share on other sites

Fix found, after some analysis:

On Vatsim.php

Under the function authenticate, replace

$ssoReturn = \IPS\Http\Url::internal("index.php?/login&loginProcess=vatsim&return=true", "none");

with:

$ssoReturn = \IPS\Http\Url::internal("index.php?/login&loginProcess=vatsim&remember_me=1&return=true", "none");

Anastasios Mpithas

Hellenic vACC member

C1/P1-2-3-4

Link to post
Share on other sites

Please sign in to comment

You will be able to leave a comment after signing in



Sign In Now
×
×
  • Create New...