Page MenuHomePhabricator
Create Task
Maniphest T12958

Add $wgCookiePrefix property
Closed, ResolvedPublic
Actions

Description

Author: stephane.brunner

Description:
To fix it

I use a modified version of the farmer extension (http://www.mediawiki.org/wiki/Extension:Farmer).

The problem I have it is that I cant login to all wiki by one time because the cookie prefix is different for each wiki :(

The solution I made is the define in LocalSettings.php a value for $wgCookiePrefix but it isn't enough.

I should as modify the include/Setup.php to don't sets $wgCookiePrefix if it's already define.

CU And thanks in advance,
Stéphane Brunner

Version: unspecified
Severity: enhancement

Attached:

patch698 BDownload

Details

Reference
bz10958

Event Timeline

bzimport raised the priority of this task from to Medium.Nov 21 2014, 9:48 PM
bzimport added a project: MediaWiki-General.
bzimport set Reference to bz10958.
bzimport added a subscriber: Unknown Object (MLST).
bzimport created this task.Aug 16 2007, 7:48 AM
bzimport added a comment.Aug 28 2007, 5:25 PM

robchur wrote:

Might be an idea to set $wgCookiePrefix = false; in includes/DefaultSettings.php, to avoid a register_globals injection vector.

bzimport added a comment.Aug 29 2007, 3:01 PM

stephane.brunner wrote:

I don't exactly know what it's "register_globals injection vector",
then I'm OK with your proposition.

demon added a comment.Aug 24 2008, 2:35 AM

Has been this way since r37893. Apparently I A) Didn't know about this bug, and B) Claimed I was fixing a completely unrelated bug (which oddly enough, I wasn't even fixing). Figures. In any case, FIXED.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits