Page 3 of 4
Re: Keeps logging users out
Posted: Mon Mar 04, 2019 12:15 pm
by ave
Nope...
Something weird I just noticed - when I login on PhpBB side - three phpbb cookies have check sign in "HTTP" column in inspector. And when I login via Wordpress - there is no check sign in that "HTTP" column.
So far, it hasn't logged me out. And I logged in on /wp-admin, not on phpbb side...
Re: Keeps logging users out
Posted: Mon Mar 04, 2019 1:06 pm
by ave
Ha! Sorry for consecutive posts, but I have news. Maybe it's relevant.
So, I went out for half an hour and when I came back - I refreshed WP index, cookies were there, and they didn't have ✓ sign in HTTP column in inspector. That's because I logged in through WP side a while ago. But, when I clicked on forum topic, _k cookie was empty, but I noticed that ✓ sign appeared in all three phpBB cookies. Is it fair to assume that cookie HTTP header is causing the problem? Is that something with your script or pure phpBB problem?
Re: Keeps logging users out
Posted: Mon Mar 04, 2019 2:20 pm
by axew3
so try open:
/wp-content/plugins/wp-w3all-phpbb-integration/class.wp.w3all-phpbb.php
serach for this, inside
private static function phpBB_user_session_set($wp_user_data){
Code: Select all
setcookie ("$k", "$key_id_k", $cookie_expire, "/", $w3cookie_domain, $secure);
setcookie ("$sid", "$w3session_id", $cookie_expire, "/", $w3cookie_domain, $secure);
setcookie ("$u", "$phpbb_user_id", $cookie_expire, "/", $w3cookie_domain, $secure);
change into:
Code: Select all
setcookie ("$k", "$key_id_k", $cookie_expire, "/", $w3cookie_domain, $secure, true);
setcookie ("$sid", "$w3session_id", $cookie_expire, "/", $w3cookie_domain, $secure, true);
setcookie ("$u", "$phpbb_user_id", $cookie_expire, "/", $w3cookie_domain, $secure, true);
that's to setup the cookie as http only.
CLean cookies and try out.
But i do not think this is your problem. Yiu should have wrong settings somewhere.
Re: Keeps logging users out
Posted: Mon Mar 04, 2019 2:46 pm
by axew3
sure that when you click on a last topic, you still are https if logged in as https and not http?
Think i reproduced the issue.
It seem to me that the switch to between http/s happen when i click into last topics widget to open a listed forum post.
It not happen in iframe, but happen in your mode.
Maybe i'm wrong, but i'm looking into this right now.
Can you do this please:
login wp side, then click on a last forum post. You phpbb will open, and you result logged out.
But your address say http now, not https?
if you switch to https the forum address into address bar, then you reappear logged in?
Can be this? Isn't it?
Re: Keeps logging users out
Posted: Mon Mar 04, 2019 2:58 pm
by axew3
so, about the above, what's the URL setting of the plugin?
check and setup all as https so the URL setting of the WP_w3all plugin that point to phpBB should be
and not
if the WP main site url setting is https (so wp force to be ssl the request)
same do in phpBB ACP
under Server setting
Force server URL settings: set to
Yes
and Server protocol setting to be:
https://
Re: Keeps logging users out
Posted: Mon Mar 04, 2019 4:20 pm
by ave
It is https in URL settings, and also its https when I hover over last topic link... All the time "green lock" is in address bar, and https is in every url. So, I guess it's not http/https issue.
Really getting ridiculos now, I even disabled Google analytics extension because I read it could cause trouble. But no luck, still getting logged out after few idle minutes.