summaryrefslogtreecommitdiff
path: root/modules/session/mod_session_cookie.c
Commit message (Collapse)AuthorAgeFilesLines
* PR56040: add SessionCookieMaxAge On/OffEric Covener2020-03-021-2/+21
| | | | | | | | Allows mod_session cookies to out as "session" cookies. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1874675 13f79535-47bb-0310-9956-ffa450edef68
* Also avoid adding the Set-Cookie header in both r->headers_out andJoe Orton2019-11-141-2/+2
| | | | | | | | | | | | r->err_headers_out in ap_cookie_remove and ap_cookie_remove2 functions to avoid duplication in HTTP response. (Follow-up to r1843244) Closes #73 PR: 60910 Submitted by: Lubos Uhliarik <luhliari redhat.com> git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1869785 13f79535-47bb-0310-9956-ffa450edef68
* mod_session_cookie: avoid adding the Set-Cookie headerLuca Toscano2018-10-091-2/+2
| | | | | | | | | | | | | | | | | | | | in both r->headers_out and r->err_headers_out to avoid duplication. In session_cookie_save it seems that ap_cookie_write is called with r->headers_out and r->err_headers_out, ending up in the same Set-Cookie header on both tables and eventually duplicated in the HTTP response. I took Emmanuel's patch and trimmed out the bits that remove the header only from r->err_headers_out (leaving it to do the work on both tables) as attempt to change this bit of code in the most conservative way as possible. Sending a commit for a broader review. PR: 60910,56098,55278 git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1843244 13f79535-47bb-0310-9956-ffa450edef68
* mod_session: Introduce SessionExpiryUpdateInterval which allows to Yann Ylavic2015-10-161-3/+3
| | | | | | | | | | configure the session/cookie expiry's update interval. PR 57300. Submitted by: Paul Spangler <paul.spangler ni.com> Reviewed/Committed by: ylavic git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1709121 13f79535-47bb-0310-9956-ffa450edef68
* CVE-2013-2249Graham Leggett2013-05-311-1/+0
| | | | | | | | | mod_session_dbd: Make sure that dirty flag is respected when saving sessions, and ensure the session ID is changed each time the session changes. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1488158 13f79535-47bb-0310-9956-ffa450edef68
* mod_session: Use apr_status_t as a return code across the mod_session API,Graham Leggett2011-12-021-2/+2
| | | | | | | clarify where we ignore errors and why. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1209603 13f79535-47bb-0310-9956-ffa450edef68
* Remove some more now redundant log prefixesStefan Fritsch2011-11-301-1/+0
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1208816 13f79535-47bb-0310-9956-ffa450edef68
* break some very long lines, no code changeStefan Fritsch2011-01-241-8/+18
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@1063016 13f79535-47bb-0310-9956-ffa450edef68
* Use the new APLOG_USE_MODULE/AP_DECLARE_MODULE macros everywhere to takeStefan Fritsch2010-06-061-1/+1
| | | | | | | advantage of per-module loglevels git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@951895 13f79535-47bb-0310-9956-ffa450edef68
* Make sure we respect the proper pool lifetimes when saving away a preparsedGraham Leggett2010-03-271-5/+5
| | | | | | | session. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@928238 13f79535-47bb-0310-9956-ffa450edef68
* mod_session_cookie, mod_session_dbd: Make sure cookies are set bothGraham Leggett2008-08-301-4/+4
| | | | | | | | within the output headers and error output headers, so that the session is maintained across redirects. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@690501 13f79535-47bb-0310-9956-ffa450edef68
* mod_session_cookie: Make sure that cookie attributes are correctlyGraham Leggett2008-08-291-2/+2
| | | | | | | | included in the blank cookie when cookies are removed. This fixes an inability to log out when using mod_auth_form. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@690400 13f79535-47bb-0310-9956-ffa450edef68
* You don't export registered entry pointsWilliam A. Rowe Jr2008-06-071-7/+4
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@664217 13f79535-47bb-0310-9956-ffa450edef68
* Fix the method used to detect the root of the request tree when subrequestsGraham Leggett2008-05-071-1/+10
| | | | | | | are present. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@654137 13f79535-47bb-0310-9956-ffa450edef68
* Change the directives within the mod_session* modules to be validGraham Leggett2008-04-091-3/+3
| | | | | | | | both inside and outside the location/directory sections, as suggested by wrowe. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@646304 13f79535-47bb-0310-9956-ffa450edef68
* Insert prototypes to remove compiler warnings. [Joe Orton]Graham Leggett2008-04-081-0/+3
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@646126 13f79535-47bb-0310-9956-ffa450edef68
* Remove all references to CORE_PRIVATE.Paul Querna2008-04-071-2/+0
| | | | git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@645455 13f79535-47bb-0310-9956-ffa450edef68
* mod_session_cookie: Add a session implementation capable of storingGraham Leggett2008-04-041-0/+269
session information within cookies on the browser. Useful for high volume sites where server bound sessions are too resource intensive. git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@644748 13f79535-47bb-0310-9956-ffa450edef68
View Lorry Controller Status