[Koha-bugs] [Bug 6694] New: Anonymous sessions not kept when casAuthentication is on

Wed Aug 10 11:40:27 CEST 2011

http://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=6694

             Bug #: 6694
           Summary: Anonymous sessions not kept when casAuthentication is
                    on
    Classification: Unclassified
 Change sponsored?: ---
           Product: Koha
           Version: master
          Platform: All
        OS/Version: All
            Status: NEW
          Severity: normal
          Priority: P5
         Component: Architecture, internals, and plumbing
        AssignedTo: gmcharlt at gmail.com
        ReportedBy: julian.maurice at biblibre.com
         QAContact: koha-bugs at lists.koha-community.org

In OPAC, if I am an anonymous user and the system preference casAuthentication
is set, each time I reach a new page, the CGISESSID cookie gets a new value,
causing the previous session to be destroyed and a new one to be created.
This bug comes from an error in checkauth (C4/Auth.pm), where a missing test
cause this strange behavior.
Also found a similar issue in check_api_auth, which cause C4::Service->init to
fail if the syspref is set.
For example, I was unable to change a syspref value when casAuthentication was
set.
Patch will follow.

-- 
Configure bugmail: http://bugs.koha-community.org/bugzilla3/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the QA Contact for the bug.