phpBB2 Integration. - I think not.(FIXED)

[Venturous]

First, let me commend you on a very good program. Once one jumps through all the hoops to get logged in, the software works great. But claiming integration with phpBB2 is a joke IMHO. I'll post some synopsis below.

First, I have searched this forum and found a lot of reports of folks having similar log in problems. Some with phpBB2 and some with the other forum packages. I have checked, and triple checked my configs and can see no reason for the problems I am having. Here are my cookie seetings. From most of the responses I have seen from you on these log in integration issues, I get the distinct impression you are not willing to conceed the fact that the integration code is buggy, but from what I am seeing, I beg to differ.

In PhotoPost:

PhotoPost cookie Path: /
Forum Cookie Prefix: phpbb2mysql
PhotoPost Cookie Domain: .mydomain.org (not posting the real here)

In phpBB2:
Cookie Domain: .mydomain.org (exactly same as in PhotoPost)
Cookie Name: phpbb2mysql
Cookie Path: /
Cookie Secure: Checked disabled
Sessions Length: 50000

Now, what is happening. This has happened to me several times as an Administrator, and I have logged in as several members and seen the exact same thing. Not to mention the countless support emails I have had to answer.

1. User logs in from the phpBB2 forum and checks the Log me in automatically box. Logs in OK on Forum and can access as normal.

2. User clicks menu link to PhotoPost. Is NOT logged in.

3. Clicks the PhotoPost Log In link and enters valid username and password.

4. No indication that log in failed and returns to PP home where it still shows the Log In link and does not have the Welcome {username} message. ie Still not logged in.

5. User doesn't notice they are not logged in and assumes logged in and tries to use PP. Fails then I get yet another freakin support email.

6. I have them click the PP Login Problems link and they delete their cookies.

7. They try again to log in and are finally sucessful.

8. This works for a short period. Day, maybe day and half, maybe a couple hours. Haven't found a common time frame yet.

9. Then the cycle begins again where they log in to the forum ok, go to PP, are not logged in, try logging in, fails without notice, delete cookies, then works. and on and on and on...

Like I said, I have triple (or more) checked my cookie settings. I have seen this happen on my Admin account several times and on several member accounts I log in as.

In my case, I was logged in last evening and accessed back and forth from the forum to to PP several times. This morning, I had to do exactly as described about in order to access PP.

As much as I like this PP software and really want to keep it online, there is no way I can continue to deal with repeated support problems due to the situation above. Plus, I can't expect my members to have to keep jumping through delete cookies hoops just to use this software.

So, I would like to give this a week to see if you can solve this, and if not, I would like to request a full refund. As much as I like the software, it is absolutely useless to me and my site without STABLE integration. I really think you are close, but don't quite have this integration stuff down and I am not willing or interested in being a guinea pig while you figure it out.

Please understand that I am not trying to be over critical. Years ago I also did a lot of programming and understand how tough these type issues can be to solve. But OTOH, the site I admin is a club of paying members and I simply can not justify having them pay to have to deal with this much hassle. I hope I am doing something wrong, but I seriously doubt it, and I will listen with an open mind to any suggestions you may have.

Thank you.

[Chuck S]

I would suggest you post a url and test login for us to look at if you would like assistance.

Merry Christmas

[Venturous]

Quote:

Originally Posted by Chuck S

I would suggest you post a url and test login for us to look at if you would like assistance.

Post a login?... I think not..

But I did just send ya a PM with a login to try.

Thank you! I sincerely do hope this can be resolved either by a code fix or finding a bonehead move I made.

[Chuck S]

LOL I did not necessarily mean an admin login. I will await the PM although nothing yet in my box. We have about an hour before I am outta here so I will see what I can do with it being xmas and all

[Venturous]

Chuck, first, thanks for the Xmas attention. Appreciate it!

I made the phpbb2.php code change you suggested and so far, I nor any of my members that I know of have had to do the cookie kill to get back into the PhotoPost. But it has only been a few hours since I made your suggested change.

However, it still is not working as I would expect it should.

1. I came back to the forum after a few hours away since last visit. I was already logged in as I would expect to be since I checked that box during previous log in.

2. I then went to the PhotoPost and found I was not logged in anymore.

3. I went back to the forum, and was still logged in there.

4. Again went back to the PhotoPost and still not logged in.

5. I went ahead and logged in at PhotoPost and was able to log in sucessfully without having to do the cookie kill dance.

So, it looks like maybe your code edit did have a positive effect on the having to kill cookies. Little early to know for sure but hope so!

But, obviously a valid login cookie still was on my system in order for phpbb2 to show me logged in when I returned. But for some reason, after a period of time, PhotoPost is not reading that cookie or not reading it correctly to show me still logged in. An expiration issue maybe?

Do phpBB2 and PhotoPost use the same cookie for determing whether a user is logged in? If so, wonder why PP isn't reading it after a period of time. If not, could it be setting an incorrect expiration time when it creates the PP cookie?

Anyway, I hope this description helps you find the reasons. I will keep you posted. Fingers crossed that the code change stops the need to do the cookie kill dance to get back in. Thanks again.

[Chuck S]

Well I PM you this

Reupload the default files for photopost do not make this edit I suggested as it was a test.

I install a default phpbb and things are great. Cookie expires a year from now. I would suggest in phpbb admin these values

Allow automatic logins
Determines whether users are allowed to select to be automatically logged in when visiting the forum

SET TO YES

Automatic login key expiry
How long a autologin key is valid for in days if the user does not visit the board. Set to zero to disable expiry.

I SUGGEST SOMETHING LIKE 7

These are new settings in phpbb and maybe this is your issue. Possibly you have autologin to off?

[Venturous]

Hi Chuck,

I had my phpBB2 setting pretty much as you mentioned. I had the expiration set to 10 days instead of 7 but changed it to 7 anyway. Doubt that could be an issue as the problem happens in less than a day. But at least we are on the same page to be sure.

I PM'd you some cookies values after a re-occurance this morning of the problem. I sent before and after re-log in values. Maybe these will help shed some light?

I re-uploaded the stock phpbb2.php file. That was the only change we made.

Let me know if there are other things I could do to help you.

[Chuck S]

Well the issue is PHP 2.018 there latest one changes the whole routine it looks like. They did away with storing the cookie in the autologinid spot of the cookie and they have a new sessions_keys table. So I rewrote the integration to include this

Try this file

[Venturous]

I do recall a lot of talk about sessions tables on the phpBB2 forum, so your fix has me very hopeful. However, I apparently do not have permissions to download the file here...

[Chuck S]

Yes they have a sessions table which we always authenticated off of however when the session changes since we work with cookies we always backup authenticated off the md5 password variable which was stored in the autologinid of the data cookie. Seems now they have a new sessions_keys table and now store that key in the autologinid part instead of password so I have added that into the authentication.

Now to download files you need to be a verified customer so please read the announcement on the top of every forum here on this site.

[Venturous]

OK Chuck, got the file and installed it. I will keep you advised whether it carries the logins over properly now or now. Thanks.

[Venturous]

Well, no dice on the new phpbb2 file fix attempt.

I got up this morning and after boot up went to the phpbb2 forum and was still logged in OK from last evenings session and read, replied and posted several messages. Then went into the PhotoPost gallery to find I was again not logged in. Was able to login without a problem, but nonetheless, I had to relog in there.

[Chuck S]

Actually very easy. I would consider this a PHPBB bug IMO. They dont clear out old session keys. Whenever you update a session you should always clear it so you dont have multiple sessions but easy enough to counter.

In phpbb2.php find this line and add the bold text

Code:

Content visible to verified customers only.

[Venturous]

OK. Amendment made. I will let ya know. Thanks again.

[Venturous]

Chuck, well booted up this morning to find my log in was still remembered on both the forum and the PhotoPost so that latest code amendment looks promising. Another day or so should tell the full story, but looking good! Still have a few members with issues, but pretty sure this is due to old cookies they are not killing right.

Overall, I want to say this has been some of the best and timely customer support I've seen in a while with a software product!! Quite refreshing. Thanks!

[tweek]

Quote:

Originally Posted by Chuck S

Well the issue is PHP 2.018 there latest one changes the whole routine it looks like. They did away with storing the cookie in the autologinid spot of the cookie and they have a new sessions_keys table. So I rewrote the integration to include this

Try this file

Quote:

Originally Posted by Chuck S

Actually very easy. I would consider this a PHPBB bug IMO. They dont clear out old session keys. Whenever you update a session you should always clear it so you dont have multiple sessions but easy enough to counter.

In phpbb2.php find this line and add the bold text

Code:

Content visible to verified customers only.

I'd like to try this fix as I have the same issue but for some reason it says I don't have permission to download the file ?

[Chuck S]

try this

http://www.photopost.com/forum/photopost-pro-bug-reports/announcements.html

[tweek]

n/m it finally works now.. I was showing as verified before, seems even after that shows under the username it takes quite a bit longer for permissions to fully kick in

[Venturous]

Chuck, just an update. Two days now have stayed logged in at both the phpBB2 forum AND PhotoPost. Good job!!

[tweek]

it seems to be working ok here too.. I'll post back if there are any more probs but I think the modded file plus the extra bit of code cracked it