My current operating system and MediaWiki details:
- Operating System: Mac OS X 10.6.2 - MediaWiki: 1.17.3 - PHP: 5.3.0 - SQLite: 3.16.5 - Extensions Installed: AdminLinks, Flagged Revisions, MultipleUpload, Nuke, Password Reset, Renameuser, Update, User Administration, WebChat, Cite, EmbedVideo, InputBox, ParserFunctions, SimpleSecurity, ConfirmEdit, NewUserMessage, SpamBlacklist, Title Blacklist
When trying to mark new pages/edits as "patrolled", I get the following error:
*There seems to be a problem with your login session; this action has been canceled as a precaution against session hijacking. Go back to the previous page, reload that page and then try again.*
Because (I think) mediawiki running under php 5.3.x wants an absolute session path in your localsettings.php file or your php.ini file
See
http://www.mediawiki.org/wiki/Manual:Errors_and_symptoms#Sorry.21_We_could_n....
Tom
On Jul 3, 2012, at 3:01 PM, Brandon Pimenta brandonskypimenta@gmail.com wrote:
My current operating system and MediaWiki details:
- Operating System: Mac OS X 10.6.2
- MediaWiki: 1.17.3
- PHP: 5.3.0
- SQLite: 3.16.5
- Extensions Installed: AdminLinks, Flagged Revisions, MultipleUpload,
Nuke, Password Reset, Renameuser, Update, User Administration, WebChat, Cite, EmbedVideo, InputBox, ParserFunctions, SimpleSecurity, ConfirmEdit, NewUserMessage, SpamBlacklist, Title Blacklist
When trying to mark new pages/edits as "patrolled", I get the following error:
*There seems to be a problem with your login session; this action has been canceled as a precaution against session hijacking. Go back to the previous page, reload that page and then try again.* _______________________________________________ MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
On 03/07/12 23:14, Tom wrote:
Because (I think) mediawiki running under php 5.3.x wants an absolute session path in your localsettings.php file or your php.ini file
See
http://www.mediawiki.org/wiki/Manual:Errors_and_symptoms#Sorry.21_We_could_n....
Tom
The session path is not stored in localsettings.php
Brandon, ensure that a) You have cookies enabled. b) The webserver can write in the folder specified by session.save_path in php.ini
Oops you misunderstood me. I know the session path isn't stored in localsettings.php. But you can point to the session path in localsettings.
Guess it is for those without access to php.ini. Personally mine are stored outside of the public_html file.
Tom Sent from my iPhone
On Jul 3, 2012, at 6:32 PM, Platonides Platonides@gmail.com wrote:
On 03/07/12 23:14, Tom wrote:
Because (I think) mediawiki running under php 5.3.x wants an absolute session path in your localsettings.php file or your php.ini file
See
http://www.mediawiki.org/wiki/Manual:Errors_and_symptoms#Sorry.21_We_could_n....
Tom
The session path is not stored in localsettings.php
Brandon, ensure that a) You have cookies enabled. b) The webserver can write in the folder specified by session.save_path in php.ini
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
Here is the Localsettings.php code...
session_save_path( '/absolute/path/to/sessions/folder' );
Usually something like, /home/youraccountname/thefolder
Like Platonides said, make sure it is writable by your web server. I have one host I deal with which is a bit twitchy, so I have to use this setting to specify the path.
Tom
------------------------------------------------------------------------ On 7/3/2012 9:13 PM, Tom wrote:
Oops you misunderstood me. I know the session path isn't stored in localsettings.php. But you can point to the session path in localsettings.
Guess it is for those without access to php.ini. Personally mine are stored outside of the public_html file.
Tom Sent from my iPhone
On Jul 3, 2012, at 6:32 PM, Platonides Platonides@gmail.com wrote:
On 03/07/12 23:14, Tom wrote:
Because (I think) mediawiki running under php 5.3.x wants an absolute session path in your localsettings.php file or your php.ini file
See
http://www.mediawiki.org/wiki/Manual:Errors_and_symptoms#Sorry.21_We_could_n....
Tom
The session path is not stored in localsettings.php
Brandon, ensure that a) You have cookies enabled. b) The webserver can write in the folder specified by session.save_path in php.ini
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
Same error: There seems to be a problem with your login session; this action has been canceled as a precaution against session hijacking. Go back to the previous page, reload that page and then try again.
I think this a bug. I entered the following code in my LocalSettings.php:
session_save_path( '/Users/sky/nonwebaccessible/wikisessiondata' );
Really? Why is this happening? What is causing the problem?
On Tue, Jul 3, 2012 at 10:28 PM, Tom Hutchison tom@hutch4.us wrote:
Here is the Localsettings.php code...
session_save_path( '/absolute/path/to/sessions/**folder' );
Usually something like, /home/youraccountname/**thefolder
Like Platonides said, make sure it is writable by your web server. I have one host I deal with which is a bit twitchy, so I have to use this setting to specify the path.
Tom
------------------------------**------------------------------**
On 7/3/2012 9:13 PM, Tom wrote:
Oops you misunderstood me. I know the session path isn't stored in localsettings.php. But you can point to the session path in localsettings.
Guess it is for those without access to php.ini. Personally mine are stored outside of the public_html file.
Tom Sent from my iPhone
On Jul 3, 2012, at 6:32 PM, Platonides Platonides@gmail.com wrote:
On 03/07/12 23:14, Tom wrote:
Because (I think) mediawiki running under php 5.3.x wants an absolute session path in your localsettings.php file or your php.ini file
See
http://www.mediawiki.org/wiki/**Manual:Errors_and_symptoms#** Sorry.21_We_could_not_process_**your_edit_due_to_a_loss_of_** session_data._Please_try_**again._If_it_still_doesn.27t_** work.2C_try_logging_out_and_**logging_back_inhttp://www.mediawiki.org/wiki/Manual:Errors_and_symptoms#Sorry.21_We_could_not_process_your_edit_due_to_a_loss_of_session_data._Please_try_again._If_it_still_doesn.27t_work.2C_try_logging_out_and_logging_back_in .
Tom
The session path is not stored in localsettings.php
Brandon, ensure that a) You have cookies enabled. b) The webserver can write in the folder specified by session.save_path in php.ini
______________________________**_________________ MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.**org MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/**mailman/listinfo/mediawiki-lhttps://lists.wikimedia.org/mailman/listinfo/mediawiki-l
______________________________**_________________ MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.**org MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/**mailman/listinfo/mediawiki-lhttps://lists.wikimedia.org/mailman/listinfo/mediawiki-l
______________________________**_________________ MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.**org MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/**mailman/listinfo/mediawiki-lhttps://lists.wikimedia.org/mailman/listinfo/mediawiki-l
On 04/07/12 07:44, Brandon Pimenta wrote:
Same error: There seems to be a problem with your login session; this action has been canceled as a precaution against session hijacking. Go back to the previous page, reload that page and then try again.
I think this a bug. I entered the following code in my LocalSettings.php:
session_save_path( '/Users/sky/nonwebaccessible/wikisessiondata' );
Really? Why is this happening? What is causing the problem?
What user is the script running as? Maybe it's running as a user called apache which can't write into the folder of user sky...
I reported it to Bugzilla. See bug 38189https://bugzilla.wikimedia.org/show_bug.cgi?id=38189 .
I still get the error message. The permissions of the 'sky', 'wikisessiondata', and 'nonwebaccessible' folders are read and write for owner and read only for staff and world. Maybe this command will help:
sudo chmod 777 /Users/sky/nonwebaccessible/wikisessiondata
Only admins can use the sudo command.
On Wed, Jul 4, 2012 at 6:32 PM, Platonides Platonides@gmail.com wrote:
On 04/07/12 07:44, Brandon Pimenta wrote:
Same error: There seems to be a problem with your login session; this action has been canceled as a precaution against session hijacking. Go
back
to the previous page, reload that page and then try again.
I think this a bug. I entered the following code in my LocalSettings.php:
session_save_path( '/Users/sky/nonwebaccessible/wikisessiondata' );
Really? Why is this happening? What is causing the problem?
What user is the script running as? Maybe it's running as a user called apache which can't write into the folder of user sky...
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
Hi Brandon,
I saw that bug report just now (without this thread as context).
This is not a bug and nothing to worry about whatsoever. For those not up to date with bug 38189 (resolved as invalid), the user is trying to access the following kind of url:
http://wiki.example.org/mw/index.php?title=Test&action=markpatrolled
That url returns a session error message because of an invalid token. Which is correct because the token (the one not present in the url) does not match the security token associated with the recent change — the recent change of which the id is also not given in the url?
To patrol an edit, use the [mark as patrolled] links found in the interface. Although you shouldn't have to deal with the url manually, if you're interested, they should look like this:
http://wiki.example.org/mw/index.php?action=markpatrolled&rcid=1234&...]
So all this changing of permissions of session data directories has been unnecessary, your MediaWiki install is in a healthy condition. That is, assuming: * Editing a page works fine * That the broken url showing the session token error was indeed created by you manually, and not referred to by the software.
-- Krinkle
[1] I created a diagram a few months back that may help: http://commons.wikimedia.org/wiki/File:Commons_Mark_as_patrolled.png
On Jul 5, 2012, at 9:37 AM, Brandon Pimenta wrote:
I reported it to Bugzilla. See bug 38189https://bugzilla.wikimedia.org/show_bug.cgi?id=38189 .
I still get the error message. The permissions of the 'sky', 'wikisessiondata', and 'nonwebaccessible' folders are read and write for owner and read only for staff and world. Maybe this command will help:
sudo chmod 777 /Users/sky/nonwebaccessible/wikisessiondata
Only admins can use the sudo command.
On Wed, Jul 4, 2012 at 6:32 PM, Platonides Platonides@gmail.com wrote:
On 04/07/12 07:44, Brandon Pimenta wrote:
Same error: There seems to be a problem with your login session; this action has been canceled as a precaution against session hijacking. Go
back
to the previous page, reload that page and then try again.
I think this a bug. I entered the following code in my LocalSettings.php:
session_save_path( '/Users/sky/nonwebaccessible/wikisessiondata' );
Really? Why is this happening? What is causing the problem?
What user is the script running as? Maybe it's running as a user called apache which can't write into the folder of user sky...
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
In my environment, there's no "[mark as patrolled]" link. Is there something missing here? Where do you optain this token? What's wrong?
On Thu, Jul 5, 2012 at 5:38 AM, Krinkle krinklemail@gmail.com wrote:
Hi Brandon,
I saw that bug report just now (without this thread as context).
This is not a bug and nothing to worry about whatsoever. For those not up to date with bug 38189 (resolved as invalid), the user is trying to access the following kind of url:
http://wiki.example.org/mw/index.php?title=Test&action=markpatrolled
That url returns a session error message because of an invalid token. Which is correct because the token (the one not present in the url) does not match the security token associated with the recent change — the recent change of which the id is also not given in the url?
To patrol an edit, use the [mark as patrolled] links found in the interface. Although you shouldn't have to deal with the url manually, if you're interested, they should look like this:
http://wiki.example.org/mw/index.php?action=markpatrolled&rcid=1234&...]
So all this changing of permissions of session data directories has been unnecessary, your MediaWiki install is in a healthy condition. That is, assuming:
- Editing a page works fine
- That the broken url showing the session token error was indeed created
by you manually, and not referred to by the software.
-- Krinkle
[1] I created a diagram a few months back that may help: http://commons.wikimedia.org/wiki/File:Commons_Mark_as_patrolled.png
On Jul 5, 2012, at 9:37 AM, Brandon Pimenta wrote:
I reported it to Bugzilla. See bug 38189https://bugzilla.wikimedia.org/show_bug.cgi?id=38189 .
I still get the error message. The permissions of the 'sky', 'wikisessiondata', and 'nonwebaccessible' folders are read and write for owner and read only for staff and world. Maybe this command will help:
sudo chmod 777 /Users/sky/nonwebaccessible/wikisessiondata
Only admins can use the sudo command.
On Wed, Jul 4, 2012 at 6:32 PM, Platonides Platonides@gmail.com wrote:
On 04/07/12 07:44, Brandon Pimenta wrote:
Same error: There seems to be a problem with your login session; this action has been canceled as a precaution against session hijacking. Go
back
to the previous page, reload that page and then try again.
I think this a bug. I entered the following code in my
LocalSettings.php:
session_save_path( '/Users/sky/nonwebaccessible/wikisessiondata' );
Really? Why is this happening? What is causing the problem?
What user is the script running as? Maybe it's running as a user called apache which can't write into the folder of user sky...
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
Am 05.07.2012 11:14, schrieb Brandon Pimenta:
In my environment, there's no "[mark as patrolled]" link. Is there something missing here? Where do you optain this token? What's wrong?
http://www.mediawiki.org/wiki/Help:Patrolled_edits
Have a look at that page and check for |$wgUseRCPatrol in your localsettings. |
My code in LocalSettings.php:
$wgUseRCPatrol = true; $wgUseNPPatrol = true;
So what went wrong?
On Thu, Jul 5, 2012 at 6:29 AM, Stip stipen.treublatt@gmx.net wrote:
Am 05.07.2012 11:14, schrieb Brandon Pimenta:
In my environment, there's no "[mark as patrolled]" link. Is there
something missing here? Where do you optain this token? What's wrong?
http://www.mediawiki.org/wiki/**Help:Patrolled_editshttp://www.mediawiki.org/wiki/Help:Patrolled_edits
Have a look at that page and check for |$wgUseRCPatrol in your localsettings.
| ______________________________**_________________ MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.**org MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/**mailman/listinfo/mediawiki-lhttps://lists.wikimedia.org/mailman/listinfo/mediawiki-l
On 7/5/2012 5:54 AM, Brandon Pimenta wrote:
My code in LocalSettings.php:
$wgUseRCPatrol = true; $wgUseNPPatrol = true;
So what went wrong?
Brandon,
Missed the Flagged Rev extension in your very first post. IMO, many times it is an extension which causes unexpected results. I don't use this extension, but since it does work in the realm of patrol, autopatrol functions I would take a closer look at it. Try disabling, then patrolling an edit, see if it works.
Tom
To avoid that anyone can patrol something, this ability has been restricted.
Check [[Special:Preferences]] and look in which user groups you are.
Then go to [[Special:ListGroupRights]] and look up those user groups. Does any of those groups you are a member of have the "patrol" user right? If not, then you should make yourself a member of one of the groups that have the patrol right (the admin "sysop" group, for example, has the "patrol" right).
-- Krinkle
On Jul 5, 2012, at 11:54 AM, Brandon Pimenta wrote:
My code in LocalSettings.php:
$wgUseRCPatrol = true; $wgUseNPPatrol = true;
So what went wrong?
On Thu, Jul 5, 2012 at 6:29 AM, Stip stipen.treublatt@gmx.net wrote:
Am 05.07.2012 11:14, schrieb Brandon Pimenta:
In my environment, there's no "[mark as patrolled]" link. Is there
something missing here? Where do you optain this token? What's wrong?
http://www.mediawiki.org/wiki/**Help:Patrolled_editshttp://www.mediawiki.org/wiki/Help:Patrolled_edits
Have a look at that page and check for |$wgUseRCPatrol in your localsettings.
| ______________________________**_________________ MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.**org MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/**mailman/listinfo/mediawiki-lhttps://lists.wikimedia.org/mailman/listinfo/mediawiki-l
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
I have all the necessary permissions to use patrolling. Is there something missing here, or is it Flagged Revs?
On Thu, Jul 5, 2012 at 9:05 AM, Krinkle krinklemail@gmail.com wrote:
To avoid that anyone can patrol something, this ability has been restricted.
Check [[Special:Preferences]] and look in which user groups you are.
Then go to [[Special:ListGroupRights]] and look up those user groups. Does any of those groups you are a member of have the "patrol" user right? If not, then you should make yourself a member of one of the groups that have the patrol right (the admin "sysop" group, for example, has the "patrol" right).
-- Krinkle
On Jul 5, 2012, at 11:54 AM, Brandon Pimenta wrote:
My code in LocalSettings.php:
$wgUseRCPatrol = true; $wgUseNPPatrol = true;
So what went wrong?
On Thu, Jul 5, 2012 at 6:29 AM, Stip stipen.treublatt@gmx.net wrote:
Am 05.07.2012 11:14, schrieb Brandon Pimenta:
In my environment, there's no "[mark as patrolled]" link. Is there
something missing here? Where do you optain this token? What's wrong?
http://www.mediawiki.org/wiki/Help:Patrolled_edits%3E
Have a look at that page and check for |$wgUseRCPatrol in your localsettings.
| ______________________________**_________________ MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.**org MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/**mailman/listinfo/mediawiki-l<
https://lists.wikimedia.org/mailman/listinfo/mediawiki-l%3E
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
WTF? This message has not had a reply in 3 hours. On that basis it is stale and will be closed.
On Thu, Jul 5, 2012 at 6:46 PM, Brandon Pimenta <brandonskypimenta@gmail.com
wrote:
I have all the necessary permissions to use patrolling. Is there something missing here, or is it Flagged Revs?
On Thu, Jul 5, 2012 at 9:05 AM, Krinkle krinklemail@gmail.com wrote:
To avoid that anyone can patrol something, this ability has been restricted.
Check [[Special:Preferences]] and look in which user groups you are.
Then go to [[Special:ListGroupRights]] and look up those user groups. Does any of those groups you are a member of have the "patrol" user right? If not, then you should make yourself a member of one of the groups that have the patrol right (the admin "sysop" group, for example, has the "patrol" right).
-- Krinkle
On Jul 5, 2012, at 11:54 AM, Brandon Pimenta wrote:
My code in LocalSettings.php:
$wgUseRCPatrol = true; $wgUseNPPatrol = true;
So what went wrong?
On Thu, Jul 5, 2012 at 6:29 AM, Stip stipen.treublatt@gmx.net wrote:
Am 05.07.2012 11:14, schrieb Brandon Pimenta:
In my environment, there's no "[mark as patrolled]" link. Is there
something missing here? Where do you optain this token? What's wrong?
http://www.mediawiki.org/wiki/Help:Patrolled_edits%3E
Have a look at that page and check for |$wgUseRCPatrol in your localsettings.
| ______________________________**_________________ MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.**org MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/**mailman/listinfo/mediawiki-l<
https://lists.wikimedia.org/mailman/listinfo/mediawiki-l%3E
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
E-mail considered stale (>1 day without reply). Closing.
On Thu, Jul 5, 2012 at 6:46 PM, Brandon Pimenta <brandonskypimenta@gmail.com
wrote:
I have all the necessary permissions to use patrolling. Is there something missing here, or is it Flagged Revs?
On Thu, Jul 5, 2012 at 9:05 AM, Krinkle krinklemail@gmail.com wrote:
To avoid that anyone can patrol something, this ability has been restricted.
Check [[Special:Preferences]] and look in which user groups you are.
Then go to [[Special:ListGroupRights]] and look up those user groups. Does any of those groups you are a member of have the "patrol" user right? If not, then you should make yourself a member of one of the groups that have the patrol right (the admin "sysop" group, for example, has the "patrol" right).
-- Krinkle
On Jul 5, 2012, at 11:54 AM, Brandon Pimenta wrote:
My code in LocalSettings.php:
$wgUseRCPatrol = true; $wgUseNPPatrol = true;
So what went wrong?
On Thu, Jul 5, 2012 at 6:29 AM, Stip stipen.treublatt@gmx.net wrote:
Am 05.07.2012 11:14, schrieb Brandon Pimenta:
In my environment, there's no "[mark as patrolled]" link. Is there
something missing here? Where do you optain this token? What's wrong?
http://www.mediawiki.org/wiki/Help:Patrolled_edits%3E
Have a look at that page and check for |$wgUseRCPatrol in your localsettings.
| ______________________________**_________________ MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.**org MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/**mailman/listinfo/mediawiki-l<
https://lists.wikimedia.org/mailman/listinfo/mediawiki-l%3E
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l
mediawiki-l@lists.wikimedia.org