Session Collision |
Goodmorning,
short update: I tried to move the sessions to the database but I couldn't find any difference. If I have a controller with a similar if inside: PHP Code: if ($this->session->userdata('mycode') === 'AAA') and one pc with two browsers open on the same page (one is Chrome and one is Firefox for example), one with the user with the AAA code and one with the BBB code, one of the two browsers will assume the identity of the other. Why? It's ridicolous! Is it my mistake? I don't understand anything about programming? Thanks again for your availability
If it's of any use to anyone:
Momentarily I solved it by inserting a token in the generated login url for each user and inserting a control in each controller. (Session type match + (token in session vs token in url)) |
Welcome Guest, Not a member yet? Register Sign In |