[dev] ActiveSync with Nokia MfE - Strange Problem in Horde_Auth_Base
Lukas Gradl
horde at ssn.at
Thu May 27 14:57:27 UTC 2010
On 2010-05-27 16:47, Jan Schneider wrote:
> Zitat von Lukas Gradl <horde at ssn.at>:
>
>
> Now you are onto something! $_COOKIE is set automatically if the client
> sent a cookie with the HTTP request. I bet that cookie support is not
> required by the AS specs.
> Actually Horde should fall back to some other secret if it can't store
> them in the cookie, but maybe this is broken in the current development
> version. Or maybe this doesn't work for some reason during AS requests.
As far as I can see (in Horde_Secret::getKey) session_id() is used as
key if no cookie is set.
But session_id() seems to return an empty value...
regards
Lukas
--
----------------------------
software security networks
Lukas Gradl <horde#ssn.at>
Eduard-Bodem-Gasse 5
A - 6020 Innsbruck
Tel: +43-512-214040-0
Fax: +43-512-214040-21
----------------------------
More information about the dev
mailing list