6.0.0-beta1
▾
Tasks
New Task
Search
Photos
Wiki
▾
Tickets
New Ticket
Search
dev.horde.org
Toggle Alerts Log
Help
9/18/25
H
istory
A
ttachments
C
omment
W
atch
Download
Comment on [#3386] logouts due to imp_key cookie timeouts.
*
Your Email Address
*
Spam protection
Enter the letters below:
.___..__.. ,.__.. . | | | \./ | ||\/| | |__\ | |__\| |
Comment
>> another patch to make imp authentication more resilient against > >> disappearing cookies, due to timeouts or browser "quirks". this will > >> recover the password from the horde credentials if possible, or > >> invalidate the session if the horde credentials can't be decrypted. > >> this gives the user a session error instead of a login error, which > >> may be less alarming, and prevents the failed IMAP login, which takes > >> time (10 to 15 seconds in our case) and leaves ugly log entries both > >> on the horde/imp server and the imap server. > > > > Shouldn't this be fixed with the other commit referenced in this > ticket? the cookies - auth and app specific - are set within > microseconds of each other, but cookie expiration are only allowed in > seconds so this expiration value should be at most no more than a > second different from each other. > > > > this code is also invalid if not using 'hordeauth'.
Attachment
Watch this ticket
N
ew Ticket
M
y Tickets
S
earch
Q
uery Builder
R
eports
Saved Queries
Open Bugs
Bugs waiting for Feedback
Open Bugs in Releases
Open Enhancements
Enhancements waiting for Feedback
Bugs with Patches
Enhancements with Patches
Release Showstoppers
Stalled Tickets
New Tickets
Horde 5 Showstoppers