Reputation: 33348
CakePHP: Session->write() not working
I'm building a very basic auth system for specific pages which require a password to view. I've found several other questions that sound similar, but the only ones with clear solutions involve config settings that don't seem to resolve my problem. For some reason $this->Session->write(...) always returns false.
Here's my config setting:
Configure::write('Session', array(
'defaults' => 'php'
));
Here's where I try to write the session in the controller action:
private function _handle_auth_attempt( $object ) {
$submitted_pass = $this->request->data['Object']['password'];
$correct_pass = $object['Object']['password'];
$auth_cookie_name = $this->Object->auth_cookie_name($object);
debug($auth_cookie_name); //'Object1.pass'
debug($submitted_pass); //'foobar'
if ( md5($submitted_pass) == md5($correct_pass) ) {
$write1 = $this->Session->write( $auth_cookie_name, md5($submitted_pass) );
$write2 = CakeSession::write( $auth_cookie_name, md5($submitted_pass) );
debug($write1); //FALSE
debug($write2); //FALSE
return TRUE;
}
$this->Session->setFlash('The password you entered is incorrect.');
$this->redirect( $this->referer() );
}
Update
Inside _handle_auth_attempt() I added:
$_SESSION['foo'] = 'bar';
$this->Session-read('foo'); //'bar'
...and they work fine. So I'm pretty sure this isn't a permissions problem.
Upvotes: 1
Views: 7651
Answers (3)
Reputation: 22071
All your session read/writes belong in the controller:
$this->Session->write('User.still_login', 'Yes');
echo $this->Session->read('User.still_login'); // Yes as output
Upvotes: 0
Reputation: 33348
I don't understand this at all, but I removed the "." from inside my session cookie's name and it causes Session->write() to work again.
$this->Session->write('Object1.pass'); //FALSE
$this->Session->write('Object1pass'); //TRUE
Although this solves my immediate problem, I'd love to understand this problem better.
Update
After thinking this through more, I suspect that what was happening is a combination of factors:
- CakePHP uses the "dot" notation to store session inside arrays which I wasn't accounting for.
- The very first time I ran the code, it probably worked...
- But every subsequent attempt it returned
FALSEbecause it already existed <--untested - I have no explanation why
read()was returning false.
Upvotes: 0
Reputation: 2052
From the source code, one possibilities of FALSE is that the session name is empty. So can you check what result is
debug($auth_cookie_name);
Upvotes: 1
Related Questions
- Write to session on Cakephp 3
- CakePHP cannot write to session
- Session cookie not being written in CakePHP 2
- Method SessionHelper::write does not exist Error
- cakephp Session->write problem in linux
- CakePHP - Session being written, then lost on page refresh
- Session cookie keeps getting overwritten
- CakePHP 2.1 $this->Session->write is not working
- cakephp : session can't write
- Cakephp doesn't write a cookie