[Tickets #9733] Re: Password lost during hordeauth authentication via API
bugs at horde.org
bugs at horde.org
Wed Apr 20 18:35:12 UTC 2011
DO NOT REPLY TO THIS MESSAGE. THIS EMAIL ADDRESS IS NOT MONITORED.
Ticket URL: http://bugs.horde.org/ticket/9733
------------------------------------------------------------------------------
Ticket | 9733
Updated By | Michael Rubinsky <mrubinsk at horde.org>
Summary | Password lost during hordeauth authentication via API
Queue | Horde Base
Version | Git master
Type | Bug
State | Assigned
Priority | 3. High
-Milestone | 4.0.1
+Milestone | 4.1
Patch |
Owners | Horde Developers
------------------------------------------------------------------------------
Michael Rubinsky <mrubinsk at horde.org> (2011-04-20 18:35) wrote:
Target this for 4.1.
This is caused by the authentication credentials being stored in the
horde session, and since horde's session storage is backed by
$_SESSION, this information is lost, even during the same request.
In AS, this is caused by Kronolith checking for APIs such as Tasks and
listTimeObjects - which causes a need for those apps to be
authenticated.
After discussion with other devs, this is going to be fixed by
implementing a new session storage backend to be used when
sessioncontrol == none, that will simply store the session values in
private members so that session data set during the request will still
be available during the request.
More information about the bugs
mailing list