[BUGFIX] Update session id in user property
The session id is also additionally stored in the user property array in AbstractUserAuthentication. When regenerating the session id, we must update the session id in this user property as well, otherwise it leads to failures in session handling (like #69763). The workaround introduce for #69763 can stay, because it mitigates other reasons for invalid tokens in the URL by redirecting to the login page. Resolves: #78739 Related: #69763 Releases: master, 7.6, 6.2 Change-Id: Ib58e6b5dacae3b9e431e662e214557411fd668f3 Reviewed-on: https://review.typo3.org/50701 Tested-by:TYPO3com <no-reply@typo3.com> Reviewed-by:
Andreas Fernandez <typo3@scripting-base.de> Tested-by:
Markus Klein <markus.klein@typo3.org> Tested-by:
Stephan Großberndt <stephan@grossberndt.de> Reviewed-by:
Joerg Boesche <typo3@joergboesche.de> Reviewed-by:
Daniel Goerz <ervaude@gmail.com> Reviewed-by:
Helmut Hummel <typo3@helhum.io> Tested-by:
parent
f64b639a
Please register or sign in to comment