Join GitHub today
$_COOKIE variable has been set to empty when 'pmaCookieVer' empty #13480
Steps to reproduce
1、FILE and LINE
2、hole $_COOKIE variable was set to empty, very coarse behaviour!
can be this:
We are making use of Signon Authentication. Since upgrading to phpMyAdmin 4.7.5 we have been experiencing an issue where phpMyAdmin considers authenticated users to be not authenticated on the first signon authentication redirect. Subsequent redirects work fine.
I have been looking at the code and the problem seems to be that all cookies are cleared in common.inc.php, whilst later in the process AuthenticationSignon.php checks to see that the SignonSession cookie is set, which of course it isn't, cause the cookies have been cleared.
My current workaround is to set a pmaCookieVer cookie to 5 in signon.php before the redirect.
setcookie('pmaCookieVer', 5, 0, '/examples/phpmyadmin/', '', false, true);
Feels like a bit of a hack. Thoughts?