Joomla! Issue Tracker | Joomla! CMS #29007 - [4.0] Session Manager for destroying sessions

? ? ?

Fixed in Code Base
29 Mar 2021
Urgent
Build: 4.0-dev
# 29007
Diff
SharkyKZ:j4/session-thing

Failure

Success Hound Smells good to me. Woof! Details
Success continuous-integration/appveyor/pr AppVeyor build succeeded Details
Success Download Prebuilt packages are available for download. Details
Failure continuous-integration/drone/pr Build is failing Details
Failure JTracker/HumanTestResults Human Test Results: 0 Successful 2 Failed. Details

User tests: Successful: Unsuccessful:

SharkyKZ
9 May 2020

Replacement PR for #26891.

Summary of Changes

See #26891.

Testing Instructions

See #26891.

Documentation Changes Required

Yes, see #26891.

6e55d42 9 May 2020

Session Manager for destroying sessions

SharkyKZ - open - 9 May 2020

SharkyKZ - change - 9 May 2020

Status

New

⇒

Pending

joomla-cms-bot - change - 9 May 2020

Category

⇒

Libraries Front End Plugins Unit Tests

bd28bc4 10 May 2020

Merge remote-tracking branch 'upstream/4.0-dev' into j4/session-thing

SharkyKZ - change - 10 May 2020

Labels

Added: ? ? ?

jwaisner - change - 12 Jun 2020

Priority

Medium

⇒

Urgent

carcam - test_item - 6 Aug 2020 - Tested unsuccessfully

carcam - comment - 6 Aug 2020

I have tested this item ? unsuccessfully on bd28bc4

I have followed this steps:

Set session handler to Filesystem
Create a registered user
Logged in with registered user in the frontend
Force log out the user from the logged in module in dashboard: User was removed from the module, but kept logged in in the frontend.
Applied the patch
Repeat from 3. This time log out button did nothing and user kept logged in in the frontend again.
_{This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/29007.}

richard67 - comment - 6 Aug 2020

@carcam It does not make much sense to test a pull request if

it has conflicts.
it is still draft status.

BertaOctech - test_item - 6 Aug 2020 - Tested unsuccessfully

BertaOctech - comment - 6 Aug 2020

I have tested this item ? unsuccessfully on bd28bc4

I have open sessions for a registered users both in firefox and chrome

I have tried to obtain the expected result:

Logging a user out with the icon in the "Logged-in Users" module logs a user out regardless of session handler

This happened to me befor applying the patch

Removing a user account with a privacy request does not trigger a fatal error

The first worked fine before applying the patch

I could not test the second because of an issue I reported at
#30304

_{This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/29007.}

BertaOctech - comment - 6 Aug 2020

The issue was my mistake, so I closed it #30304 (comment)

Following on my previous test, in my case "Removing a user account with a privacy request" did not trigger a fatal error

I wonder if some other patch has solved the issue. That would mean this patch is not needed anymore.

c2b042d 4 Dec 2020

Merge remote-tracking branch 'upstream/4.0-dev' into j4/session-thing

9e46c26 4 Dec 2020

Fix return type

SharkyKZ - change - 4 Dec 2020

Labels

Added: Conflicting Files

71d68e0 11 Dec 2020

Merge remote-tracking branch 'upstream/4.0-dev' into j4/session-thing

SharkyKZ - change - 11 Dec 2020

Labels

Added: ?
Removed: Conflicting Files

rdeutz - test_item - 25 Mar 2021 - Tested successfully

rdeutz - comment - 25 Mar 2021

I have tested this item ✅ successfully on 71d68e0

There is one problem we can fix in another PR, if you set session manager to file and click on "Log Out" in the backend, the button is still there. The user is logged out and we you refresh the frontend to user is also gone in the backend. The reason is that the session is still in the database session table. I am looking into this just need to find out where is the best place to clean the database table.

_{This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/29007.}

joomdonation - test_item - 28 Mar 2021 - Tested successfully

joomdonation - comment - 28 Mar 2021

I have tested this item ✅ successfully on 71d68e0

Give it a successful test so that we can move forward with #32863 .

_{This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/29007.}

Quy - change - 28 Mar 2021

Status

Pending

⇒

Ready to Commit

Quy - comment - 28 Mar 2021

RTC

_{This comment was created with the J!Tracker Application at issues.joomla.org/tracker/joomla-cms/29007.}

bembelimen - close - 29 Mar 2021

bembelimen - merge - 29 Mar 2021

bembelimen - change - 29 Mar 2021

Status	Ready to Commit	⇒	Fixed in Code Base
Closed_Date	0000-00-00 00:00:00	⇒	2021-03-29 08:53:58
Closed_By		⇒	bembelimen
Labels	Added: ? ? Removed: ? ?

bembelimen - comment - 29 Mar 2021

Thank you!

PhilETaylor - comment - 2 Apr 2021

this maybe broke #32966

Add a Comment

Older
Newer

Joomla! Issue Tracker - CMS

[#29007] - [4.0] Session Manager for destroying sessions

Summary of Changes

Testing Instructions

Documentation Changes Required

Add a Comment