Not work "ZM_OPT_USE_AUTH=yes "

Serg · Post by **Serg** » Sun Jan 30, 2005 6:19 pm

I suspect, that login passes correctly, but a script again return to the login screen with blank fields Username and Password.
But at wrong input of the password in field Username there is an entered value.

I have lead experiment:
// import_request_variables ("GPC");
the Result was the same!

Here mine PHP Variables:

PHP Variables
Variable Value
PHP_SELF /zm/zm.php
_REQUEST["bandwidth"] low
_REQUEST["ZMSESSID"] 666b19a054d06b9af06db6b0912aac89
_REQUEST["PHPSESSID"] fd4063832f6eb1e574307e772aa94edc
_COOKIE["bandwidth"] low
_COOKIE["ZMSESSID"] 666b19a054d06b9af06db6b0912aac89
_COOKIE["PHPSESSID"] fd4063832f6eb1e574307e772aa94edc
_SERVER["HTTP_ACCEPT"] image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/msword, application/vnd.ms-excel, */*
_SERVER["HTTP_ACCEPT_LANGUAGE"] ru,en-us;q=0.5
_SERVER["HTTP_ACCEPT_ENCODING"] gzip, deflate
_SERVER["HTTP_USER_AGENT"] Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
_SERVER["HTTP_HOST"] 0.0.0.200
_SERVER["HTTP_CONNECTION"] Keep-Alive
_SERVER["HTTP_COOKIE"] bandwidth=low; ZMSESSID=666b19a054d06b9af06db6b0912aac89; PHPSESSID=fd4063832f6eb1e574307e772aa94edc
_SERVER["PATH"] /sbin:/usr/sbin:/bin:/usr/bin:/usr/X11R6/bin
_SERVER["SERVER_SIGNATURE"] <address>Apache-AdvancedExtranetServer/2.0.48 (Mandrake Linux/6mdk) mod_perl/1.99_11 Perl/v5.8.3 PHP/4.3.4 Server at videoserver.spb.ru Port 80</address>
_SERVER["SERVER_SOFTWARE"] Apache-AdvancedExtranetServer/2.0.48 (Mandrake Linux/6mdk) mod_perl/1.99_11 Perl/v5.8.3 PHP/4.3.4
_SERVER["SERVER_NAME"] videoserver.spb.ru
_SERVER["SERVER_ADDR"] 0.0.0.200
_SERVER["SERVER_PORT"] 80
_SERVER["REMOTE_ADDR"] 0.0.0.11
_SERVER["DOCUMENT_ROOT"] /var/www/html
_SERVER["SERVER_ADMIN"] root@localhost
_SERVER["SCRIPT_FILENAME"] /var/www/html/zm/zm.php
_SERVER["REMOTE_PORT"] 1226
_SERVER["GATEWAY_INTERFACE"] CGI/1.1
_SERVER["SERVER_PROTOCOL"] HTTP/1.1
_SERVER["REQUEST_METHOD"] GET
_SERVER["QUERY_STRING"] no value
_SERVER["REQUEST_URI"] /zm/zm.php
_SERVER["SCRIPT_NAME"] /zm/zm.php
_SERVER["PHP_SELF"] /zm/zm.php
_SERVER["PATH_TRANSLATED"] /var/www/html/zm/zm.php
_SERVER["argv"] Array
(
)

_SERVER["argc"] 0
_ENV["text_x"] 200
_ENV["text_y"] 430
_ENV["CONSOLE"] /dev/console
_ENV["theme"] Mandrake
_ENV["LOCPATH"] /etc/locale
_ENV["progress"] 30
_ENV["INIT_VERSION"] sysvinit-2.85
_ENV["text_color"] 0xeef4ff
_ENV["AUTOBOOT"] YES
_ENV["res"] 1024x768
_ENV["PATH"] /sbin:/usr/sbin:/bin:/usr/bin:/usr/X11R6/bin
_ENV["RUNLEVEL"] 5
_ENV["runlevel"] 5
_ENV["devfs"] mount
_ENV["progress_enable"] 1
_ENV["splash_rc"] yes
_ENV["PREVLEVEL"] N
_ENV["previous"] N
_ENV["SHLVL"] 2
_ENV["BOOT_IMAGE"] Mandrake
_ENV["text_size"] 20
_ENV["splash"] silent
_ENV["nbservices"] 35
_ENV["LOGO_CONSOLE"] vt
_ENV["TEXTDOMAINDIR"] /etc/locale
_ENV["_"] /sbin/initlog

Warning: session_start(): Cannot send session cookie - headers already sent by (output started at /var/www/html/zm/zm.php:28 ) in /var/www/html/zm/zm.php on line 148

Warning: session_start(): Cannot send session cache limiter - headers already sent (output started at /var/www/html/zm/zm.php:28 ) in /var/www/html/zm/zm.php on line 148

ZoneMinder Login
Username
Password

Post by **cordel** » Mon Jan 31, 2005 1:46 am

This has been true for some time. I think most of us just learned to over look it. If you just close the browser and then open a new one it will allow you to login. For some reason the login page does not update the variable for the user even though the field has been updated.
This appears to be fixed in the current Release canidate for 1.20.1.
Cheers,
Cordel

Eklectick · Post by **Eklectick** » Mon Jan 31, 2005 2:10 am

I would have left the "bug" as it is and disguised it as a security measure.

Bang on the door all you like, the only way in is to get it right the first time!

Regards!

Post by **cordel** » Mon Jan 31, 2005 2:20 am

I Like it! LOL

Serg · Post by **Serg** » Mon Jan 31, 2005 7:24 am

I for a long time know about this behaviour ZoneMinder at wrong input of the password - I work with ZoneMinder since version 1.17.0.
Still I know, that problem "ZM_OPT_USE_AUTH=yes" is solved on platforms FedoreCore, but on Mandrake 10.0 this problem has remained - the problem does not disappear even if close the browser 100 times.

With many thanks for your good cooperation,

Serg.

Post by **cordel** » Mon Jan 31, 2005 7:32 am

I beleive you have to close all browsers for the cookie to be cleared. Have you tried the latest release canidate?

Post by **zoneminder** » Mon Jan 31, 2005 9:08 am

I've never been able to get this 'login first time or not at all' problem to happen here so I haven't conciously fixed it either!

Phil

Serg · Post by **Serg** » Mon Jan 31, 2005 11:01 am

The problem appears after update LiveCD 1.19.5 up to versions 1.20.0 and 1.20.1.

We shall hope, that Ross Melin will not leave us in a trouble!

ZoneMinder Forums

Not work "ZM_OPT_USE_AUTH=yes "

Not work "ZM_OPT_USE_AUTH=yes "

The problem does not disappear even if close the browser 100