3.70 Sessions

Hi Kenny, 

I can't reproduce that locally, but we did change how the cookies work.  They're now sending a "SameSite: Lax" header (which is more secure than not sending a header).  It's possible an older cookie is taking precedence.  Could try clearing your cookies and/or changing the value of 'cookiePrefix' in your settings file?   This will prevent any old cookies from bring used.

If that doesn't help, let me know what browser you're using and feel free to email in server details and we can take a look.

Thanks!

Hi Dave - 

What if I have multiple CMSB installations open, but they all have the same cookie prefix and php session id prefix? Should I be making these unique?  They are all unique - I just checked.

I also have had 3 clients email me today and tell me they are being logged out very quickly. I told them to clear their browser cache and it worked. I've done the same thing, but it does it only last for a little while.

I'm using Chrome, and have much better luck with Firefox

Kenny H

Hi Kenny, 

I've uploaded a beta with some updates to how cookies work here: https://www.interactivetools.com/download/

Here's the changelog: 

MINOR CHANGES & BUG FIXES
- Cookies: Regenerate cookie names to force the use of new cookie settings (will require re-login)
- Cookies: Limited max cookie age to one year for better compatibility with modern browsers and RFC 6265bis
- Cookies: Fixed issue that could cause multiple login cookies to be sent
- Checkbox CSS: Reverted checkbox styling to previous settings as per user feedback
- Misc Code and other minor improvements.

Can you give that a try and let me know if it resolves the issue?  If not let us know and we'll keep at it until it's resolved.

Thanks!