[horde] Previous user-session information still available

Mike Cochrane mike at graftonhall.co.nz
Sat Jun 14 19:18:32 PDT 2003 

Here is a custom login script that works for me:
http://webmail.graftonhall.co.nz/custom_login.phps

- Mike :-)

> ----- Message from me at salimvirani.com ---------
>     Date: Sat, 14 Jun 2003 17:30:51 -0700
>     From: Salim Virani <me at salimvirani.com>
> Reply-To: Salim Virani <me at salimvirani.com>
>  Subject: Re: [horde] Previous user-session information still available
>       To: Chuck Hagenbuch <chuck at horde.org>
>
> Good question!  Thanks!
>
> Users log in from a form on the home page of the site, which I've
> included below.  I can see, now, how this works against the
> expectations of redirect.php.  It handles this condition by simply
> dumping the user back at the login page setting $reason to "failed" and
> clears some session information (but not all).
>
> Is there a recommended way to have a login form on a page outside of
> horde?  I just took the form from the regular IMP login page and put it
> on our homepage...
>
> <form action="/horde/imp/redirect.php" method="post" name="implogin">
> <input type="hidden" name="actionID" value="105" />
> <input type="hidden" name="url" value="/horde/imp/" />
> <input type="hidden" name="mailbox" value="INBOX" />
> <input type="hidden" name="folders" value="" />
> <input type="hidden" name="server" value="mail.geekmail.cc" />
> <input type="hidden" name="port" value="143" />
> <input type="hidden" name="namespace" value="" />
> <input type="hidden" name="maildomain" value="geekmail.cc" />
> <input type="hidden" name="protocol" value="imap/notls" />
> <input type="hidden" name="realm" value="geekmail.cc" />
> <h2>username</h2>
> <input type="text" tabindex="1" name="imapuser" value="" /><br/>
> <h2>password</h2>
> <input type="password" tabindex="2" name="pass" /><br/>
> <input type="submit" class="button" name="button" tabindex="4"
> value="Clear Log in" onclick="return submit_login();" />
> </form>
>
> Thanks.
>
> On Saturday, Jun 14, 2003, at 14:49 America/Vancouver, Chuck Hagenbuch
> wrote:
>
> > Quoting Salim Virani <me at salimvirani.com>:
> >
> >> It's also worth noting that when the second user's login attempt will
> >> always fail once and succeed on the second attempt.  That is:
> >> 1) User 1 logs in.  Login success logged. Inbox displayed.
> >> 2) User 2 logs in.  Fails -- but is not logged even when set to
> >> LOG_DEBUG.
> >
> > How does User 2 log in, when you're using cookies, when User 1 hasn't
> > logged
> > out? You should be taken to User 1's Inbox/Horde summary page
> > immediately,
> > and never shown a login screen.
> >
> > -chuck
> >
> > --
> > Charles Hagenbuch, <chuck at horde.org>
> > The alligators were there, too, in a bathtub inside the house.
> >
> >
> > --
> > Horde mailing list
> > Frequently Asked Questions: http://horde.org/faq/
> > To unsubscribe, mail: horde-unsubscribe at lists.horde.org
> >
> Salim Virani
> 604.773.4436
>
>
> --
> Horde mailing list
> Frequently Asked Questions: http://horde.org/faq/
> To unsubscribe, mail: horde-unsubscribe at lists.horde.org
>
>
>
> ----- End message from me at salimvirani.com -----



---
Mike Cochrane
mike at graftonhall.co.nz
021 262 1256

More information about the horde mailing list