@AofC,

Here is a patch, could I ask You to test it more thoroughly, since I am very taken with a project :

Edit :
1. use the link further down for the patch
2. The bug is fixed with the new version, aslo see further down

What I’ve done :

1. Returned to CI’s Session library, Native Session bugs on my machine under Apache 2 / PHP 5.2.
2. Extended the CI’s session class with Flash var functionality
3. Changed the Userauth library
  - to function with both session libraries
  - added a additional RememberMe check before logging out a user

If You find no bugs, I’ll change the online demo.

Thomas

tomcode,
I tested the remember_me check you added. It works now.
Unfortunately, I’m not set up to test the other changes as I’m using only some parts of those libraries.

I noticed that the remember_me cookie is never expired.
So, I modified the checkRememberMe method in the remember_me.php model to this:

Constant REMEMBER_ME_TBL is whatever the remember_me table is.
Hope this helps.

I have put the version 0.9.2t6 online with the fix for the RememberMe bug.

Additionaly I made a patch for Apache 2 / PHP 5. It replaces Native Session with CI’s session.

@AofC: Indeed this helped me. Thanks.

Hello tomcode,

Noticed in the UserAuth changelog that the language files are now located in the application directory.

Out of curiosity… what was the purpose for moving them?

Thanks!

-JamesD

Hi JamesD,

I like to have all stuff together under one directory.
I don’t like to touch the system folder.
Easier to maintain: on tomcode.com and on my local dev machine I have the system outside of the web root, while each app sticks together with it’s index file.

tomcode - 15 December 2007 07:19 PM

Hi JamesD,

I like to have all stuff together under one directory.
I don’t like to touch the system folder.
Easier to maintain: on tomcode.com and on my local dev machine I have the system outside of the web root, while each app sticks together with it’s index file.

Ahhh, gotcha… thanks! 

(for what it’s worth)
Oh, and tomcode… thanks for your hardwork contribution with it too. I personally do appreciate it.

Thanks, man. But credit’s should go in first place to the guys who came with, Craig, Derek and Peccavio.

tomcode - 15 December 2007 08:40 PM

Thanks, man. But credit’s should go in first place to the guys who came with, Craig, Derek and Peccavio.

Yep, agreed… they have been great!

But, I have already accomplished that (moons ago)

IMHO, you have been a good contributor and have helped quite a few here. So, with that being said, I was giving credit where credit is due! 

I believe I did run across a bug in regards to Case Sensitive username login.

One can still login using the same username with different upper/lower cases characters, but the privileges are dropped to the lowest group (i.e. ‘guest’ in my case).

For example….
If I have a user with the username of ‘SupermaN’, and that user is indeed in the ‘Admin’ group, that user can still login using ‘superman’... BUT, their privileges are not that of ‘Admin’... only that of ‘guest’.

To fix this I changed 2 lines in system/application/models/user_group_model.php. Both lines identical, just different locations.

The first line is in the function testLogin and the second line is in the function userExists. (line 274 & line 300)

Old line:

New line:

Adding the “LIKE BINARY” allows CaSe SeNsItIvItY.

Please feel free to let me know if there is a better way to handle this or if there was a specific reason for doing it without case sensitivity.

Hope this helps others, thanks!

-JamesD

Hi JamesD,

Thanks for the trace down. No, I do not see any special reason for not having case sensitive strings. Still, I’ll have a closer look on it.

I guess Your solution is a good way to handle it.

I’ll need some days to go through it, got a lot of work to be done the next days.

tomcode - 19 December 2007 05:38 PM

Hi JamesD,

Thanks for the trace down. No, I do not see any special reason for not having case sensitive strings. Still, I’ll have a closer look on it.

I guess Your solution is a good way to handle it.

I’ll need some days to go through it, got a lot of work to be done the next days.

No worries, wasn’t sure if it was specific to my situation… just like to help when I can.

Thanks for the confirmation, have a great/safe holidays (if applicable ).

-JamesD

Ah, yeah, should find something for the holidays, instead of starring onto the screen.

Case Sensitivity:

I’ve found some more lines to change. But I’ve another problem: I cannot insert a user ‘aDmin’, I get db error 1062 ‘Duplicata of field ‘aDmin’ for the key 2’.

Apparently the index of the username field is not case senitive. I’ve searched the mysql manual, but I did not find a solution.

Any suggestions ?