Commit graph

8 commits

Author SHA1 Message Date
phpnut
11d295eb0c Fixes #3507 Session Security.level "high", session destroyed on media 404.
Added ability to turn off HTTP_USER_AGENT check in a Controller::beforeFilter(),
Added id() to Session helper and component to return current Session id, the component accepts a $id parameter to force setting the Session id which must be called in a Controller::beforeFilter().
Sessions id are not longer renewed if a request is from Ajax, or from requestAction();
When Security.level (1.2) or CAKE_SECURITY (1.1) is set the 'high' renewing of Session id only happens if request is 2 seconds after the last request.
Added $_Session[Config][timeout] which forces renewing Session if request are within the 2 second limit and over 10 request.
If an application is expected to make multiple request (more than 10) to the server in a single proccess, Configure::write('Security.level', 'medium'); (1.2) or $this->Session->security = 'medium'; (1.1) should be used in a beforeFilter for the specific methods.
1.2 Sessions allow using CacheEngines to store Sessions, be aware that using memory caching as the only storage of Sessions is not reliable. Further work will be done to allow using the CacheEngines with database Sessions, etc.

git-svn-id: https://svn.cakephp.org/repo/branches/1.2.x.x@5982 3807eeeb-6ff5-0310-8944-8be069107fe0
2007-11-12 01:36:20 +00:00
phpnut
bf273081f0 Closes #3238, added ability to turn of check for HTTP_USER_AGENT by using Configure::write('Session.checkAgent', false); in a beforeFilter().
Added test for changes.

git-svn-id: https://svn.cakephp.org/repo/branches/1.2.x.x@5770 3807eeeb-6ff5-0310-8944-8be069107fe0
2007-10-17 00:40:47 +00:00
phpnut
1df4249d54 Adding fix for #2882, Sanitize::escape() fails for numbers.
Added test for #2882.
Corrected header files in tests

git-svn-id: https://svn.cakephp.org/repo/branches/1.2.x.x@5428 3807eeeb-6ff5-0310-8944-8be069107fe0
2007-07-09 17:02:55 +00:00
gwoo
16332140bf updating most tests with fixes to coding standards
git-svn-id: https://svn.cakephp.org/repo/branches/1.2.x.x@5395 3807eeeb-6ff5-0310-8944-8be069107fe0
2007-07-08 01:17:57 +00:00
nate
07006c9e4a Allowing spaces in session keys (Ticket #2639)
git-svn-id: https://svn.cakephp.org/repo/branches/1.2.x.x@5208 3807eeeb-6ff5-0310-8944-8be069107fe0
2007-05-27 04:10:29 +00:00
mariano.iglesias
5c1d178616 Preventing session started messages in session test
git-svn-id: https://svn.cakephp.org/repo/branches/1.2.x.x@4775 3807eeeb-6ff5-0310-8944-8be069107fe0
2007-04-05 04:27:44 +00:00
nate
fb7c56024c Shortening notation in Session test, removing debug data from HtmlHelper test
git-svn-id: https://svn.cakephp.org/repo/branches/1.2.x.x@4621 3807eeeb-6ff5-0310-8944-8be069107fe0
2007-03-16 14:58:19 +00:00
dho
a0897be3fb Fixing small bug in Session::check() (ticket #2257)
git-svn-id: https://svn.cakephp.org/repo/branches/1.2.x.x@4618 3807eeeb-6ff5-0310-8944-8be069107fe0
2007-03-16 12:47:49 +00:00