Opened 13 years ago
Closed 13 years ago
#16879 closed Bug (invalid)
request.user does not synchronize using SET_SESSION_COOKIE
| Reported by: | Owned by: | nobody | |
|---|---|---|---|
| Component: | contrib.auth | Version: | 1.3 |
| Severity: | Normal | Keywords: | |
| Cc: | Triage Stage: | Unreviewed | |
| Has patch: | no | Needs documentation: | no |
| Needs tests: | no | Patch needs improvement: | no |
| Easy pickings: | no | UI/UX: | no |
Description
Hello,
I have two sites running, on which I want to share request.user: meaning that if someone logs in to one site, he is automatically logged in to the other, and vice-versa.
I'm using
SESSION_COOKIE_DOMAIN = '.trumpetcms.nl' in both projects.
If I inspect the session data, both websites use the same session, having a shared cookie where
'sessionid': '28a1fa5874533465c0ff2889d4a.....'
But if I successfully log in to one site, then I remain anonymous on the other site. :(
I believe this to be a bug. Can some-one please confirm this? Or did I misunderstand the documentation?
Change History (2)
comment:1 by , 13 years ago
| Component: | Uncategorized → contrib.auth |
|---|---|
| Type: | Uncategorized → Bug |
comment:2 by , 13 years ago
| Resolution: | → invalid |
|---|---|
| Status: | new → closed |
Note:
See TracTickets
for help on using tickets.
The identifier of the session is the same on both sites but the contents of the session is different. On one site, the session contains some information that says that the user is logged in. On the other it doesn't.
So this isn't a bug in Django.
I don't know what's the best way to share authentication. You may have to write a custom authentication backend. If you want to discuss that, the django-users mailing list is a better place than Trac anyway. Thanks!