[Mediawiki-l] Session based cookies, one more try

Brion Vibber brion at wikimedia.org
Fri Aug 17 13:37:50 UTC 2007


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Paul Coghlan wrote:
> I am still struggling with getting Mediawiki to set its cookies that impact
> login to have an expiration at the end of the current session.

That is the default behavior.

> At the suggestion of Maarte, the author of AuthDrupal, I tried the following
> solutions in LocalSettings.php but to no avail.
> 
> $wgCookieExpiration = 0;
> 
> ini_set("session.cookie_lifetime", "0");
> 
> In each case Mediawiki has me logged in when I re-open the browser.

1) Can you confirm that it's really logged in, and not just showing you
a cached page?

Maybe you're canceling the logged-out marker cookie which keeps the
older pages out of cache?

2) Can you confirm you're not using the 'remember me' checkbox which
makes a persistent login across sessions?

- -- brion vibber (brion @ wikimedia.org)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFGxaSuwRnhpk1wk44RAiygAJ4/mPP+vNASrCuzDe6PwKVNI2N4AgCdHTL6
RExswVp1IDW0/0Vh+62YT0s=
=h3AA
-----END PGP SIGNATURE-----



More information about the MediaWiki-l mailing list