Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix session cookies for Matomo installed in subdirectory #15602

Merged
merged 1 commit into from Feb 22, 2020
Merged

Fix session cookies for Matomo installed in subdirectory #15602

merged 1 commit into from Feb 22, 2020

Conversation

sgiehl
Copy link
Member

@sgiehl sgiehl commented Feb 20, 2020

Sending the cookie path encoded seems to let the browser discard the path value as invalid and use the current path instead. This causes two session cookies, one with current path, one with /. When logging out only of the cookies gets a new session id, the other one remains. That makes it impossible to login again until the cookies are cleared (or expire).

@sgiehl sgiehl added Major Indicates the severity or impact or benefit of an issue is much higher than normal but not critical. Needs Review PRs that need a code review Regression Indicates a feature used to work in a certain way but it no longer does even though it should. labels Feb 20, 2020
@sgiehl sgiehl added this to the 3.13.3 milestone Feb 20, 2020
@tsteur tsteur removed the Major Indicates the severity or impact or benefit of an issue is much higher than normal but not critical. label Feb 22, 2020
@tsteur tsteur merged commit 4c8fe7c into 3.x-dev Feb 22, 2020
@tsteur tsteur deleted the fixsessioncookie branch February 22, 2020 00:03
@sgiehl sgiehl mentioned this pull request Jun 18, 2020
Merged
jonasgrilleres pushed a commit to 1024pix/pix-analytics that referenced this pull request Sep 22, 2020
@sgiehl @jonasgrilleres
Ensure cookies are not set with encoded parameters (matomo-org#15602)
c6e1847
jbuget pushed a commit to 1024pix/pix-analytics that referenced this pull request Sep 26, 2020
@sgiehl @jbuget
Ensure cookies are not set with encoded parameters (matomo-org#15602)
dfdac28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
Needs Review PRs that need a code review Regression Indicates a feature used to work in a certain way but it no longer does even though it should.
Projects
None yet
Milestone
3.13.3
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@sgiehl @tsteur