Rick Page
|
| Posted: 08/19/2002, 7:32 PM |
|
I'm trying out the Employee Dir example along with the tutorial for Code Charge Studio and can't seem to get logged in. I'm running Apache server on Windows XP. If I goto http://localhost/employeedir/login.php and use admin for user/pass, I get the login page again with http://localhost/employeedir/login.php?ret_link=index.php&type=notLogged in the URL. I get the same results using any of the users listed in the users table. I have checked cookies, database login/password, and used IE and Netscape with no luck. If I enter in the incorrect user/pass, I do get the expected login failed message. Anyone have a possible solution.
Thanks.
|
|
|
 |
Guest
|
| Posted: 08/20/2002, 5:31 AM |
|
please check the following:
1. cookies are enabled in your browser (you've already verified it).
2. time set both client and server is correct , otherwise it could make cookies expire before they arrive.
3. you have enough right to create files on server.
4. you have enough rights to access the page, i.e. user level field has level >= page security level
5. you may handle session time by changing the value of session.cache_expire in php.ini. Please check it to be different from 0. The default value is 180 min.
6. set register_globals = On in php.ini
7. that pages have not got cached.
|
|
|
|
Rick Page
|
| Posted: 08/20/2002, 6:55 PM |
|
Thanks for the solutions, but everything is setup the way you suggested. With the exception of the register_global. I did change it to on, despite the note that was in the ini file. Here's what it stated:
Note that register_globals is going to be depracated (i.e., turned off by default) in the next version of PHP, because it often leads to security bugs. Read http://php.net/manual/en/security.registerglobals.php for further information.....You should do your best to write your scripts so that they do not require register_globals to be on; Using form variables as globals can easily lead to possible security problems, if the code is not very well thought of.
Will newer version of CCS be taking this into account?
Anyway. Any other suggestions would be helpful. In the meantime, I'm going to try to run it on another server.
Thank again.
|
|
|
|
Tom
|
| Posted: 08/22/2002, 10:46 AM |
|
I see something very similar in CCS 1.07 building ColdFusion page
If I go to my page that has security on it http://localhost/survey/adminsurveys.cfm?
It nicely pushes me to my login page (the url still says http://localhost/survey/adminsurveys.cfm?) and I login no problem. But when I hit my logout link as generated by ccs, the url shows http://localhost/survey/Login.cfm?ret_link=%2Fsurvey%2F...&type=notLogged
but when I log in again, I DON'T return back to my adminsurveys.cfm page. The login shows over and over again.
Any ideas?
|
|
|
|
Rick Page
|
| Posted: 08/22/2002, 9:48 PM |
|
I find the solution to one of my login problems. I found out that publishing the page on the remote server worked, but not on my local machine. There was a conflict between my latest Apache for Win32 and latest PHP for Win32. With that fixed, I'm still having a strange problem with login. This is on remote linux server, php and MySQL. If I go to a page that needs authorization, I get an error 404 page doesn't exist. If I manually go to the Login.php page and login, it comes back with the login page asking to login. Then If I manually go back to the page needing authorization, the page is there.
It seems to me that CCS still has a long way to go before it is as good as the original CodeCharge. I don't have time to trouble shoot, so I'm going back to CC.
Thanks everyone for your suggestions.
|
|
|
|
Cornett
|
| Posted: 09/17/2002, 11:30 AM |
|
Tom, I had the same problem. If you look at the ASP code for the LogIn page you will find code similar to this: (Should be towards the bottom)
'Logout @9-54CB964E
If NOT IsEmpty(CCGetParam("Logout", Empty)) Then
CCLogoutUser
Redirect = "Default.asp"
End If
'End Logout
Change the Redirect to the default page you want to use. If no page is passed to the login page it uses this. If you check yours should show your login page. Thats why it keeps returning you to it.
Hope this helps
Terry Cornett
tcornett@ci.kingman.az.us
|
|
|
|
zberg007
|
| Posted: 04/27/2003, 10:36 AM |
|
I too had this problem until I set the "Return Page" property on my "Record:Login" form to the page I wanted the visitor to go to after logging in. I did have it as "Login.ccp" and of course it just kept directing back to Login.cfm in my browser. I have now changed it to "Default.ccp" and it works perfectly. Give it a try.
|
|
|
|
|
