phpMyAdmin, session bug

Stewart85

I have just updated to the new versions and the phpMyAdmin, session bug is still affecting the phpMyAdmin
I assume this was not sorted in the new 9.0 Core or Appcd 1.2.0
Is anyone else still having this issue

Adam

Hi Stewart,

Some customers have reported that, when moving from the phpMyAdmin of one website to another using the control panel single sign-on, their old session is not cleared and they remain logged in to the original database.

Is this the issue you are having? We haven't been able to reproduce this ourselves on any browser however we think it will be fixed in the next update. By popular request, phpMyAdmin will open in a new tab and therefore the single sign-on can include a "cache buster" which should ensure the redirect destination is not cached.

In the meantime:

If you are using Cloudflare or any similar caching proxy on your control panel or phpMyAdmin domains please ensure it is set not to cache anything.

Clear your browser cache and cookies for the phpMyAdmin domain. This should resolve the problem instantly. The PHP session cannot be entered without the session cookie.

Kind regards,

Adam.

Stewart85

Adam

yes its the same issue that I face
I opened a support ticket before I joined the forum about a month ago
TICKETCLF-325-77601

I have been doing the clear cookie for PHPMyAdmin to get around it, for now, was just hoping it was fixed in the update just have to wait a little bit longer

ss88us

Stewart85 I've sent in a ticket which has hopefully helped the Enhance team track down the error. Adam said it would hopefully be released in the next release, pending development.

If you're confident enough, you can edit the file signon.php (in the phpMyAdmin public_html folder) and comment out the following:

session_set_cookie_params([
   'lifetime' => $maxlifetime,
   'path' => '/',
   'domain' => $_SERVER['HTTP_HOST'],
   'secure' => $secure_cookie,
   'httponly' => true,
   'samesite' => $samesite,
]);

For me, this works. You may need to logout of the control panel and/or close/reopen your browser for the session/cookies to reset.

Stewart85

ss88us
I will have a go at editing the file thank you for the workaround

Update
Works perfectly
Thank you

Zoinkies

Any ETA on this fix? Very annoying.

Aliysa_Enhance

Zoinkies Scheduled to be included in our next release 🙂

PradeepC

The issue is still there when using Chrome. Doesn't occur in Firefox though. Not using Cloudflare for any of the control panel or phpmyadmin domains.

Adam

PradeepC The issue is still there when using Chrome. Doesn't occur in Firefox though. Not using Cloudflare for any of the control panel or phpmyadmin domains.

This was fixed a long time ago but if your installation is more than ₅ months old it's possible it hasn't been applied to your existing phpMyAdmin site. If you check public_html/signon.php it should look like this:

    session_set_cookie_params([
        'lifetime' => $maxlifetime,
        'path' => '/',
        'secure' => $secure_cookie,
        'httponly' => true,
        'samesite' => $samesite,
    ]);

If it has a domain parameter you can remove it. Or raise a support ticket and we can assist.