<div>Thanks, this is definitely a very odd situation. Essentially within a few seconds of being logged in, it kicks her out and actually shows information about a different session.</div>
<div> </div>
<div>I don't even know where to look for this one. There are no nginx error logs corresponding to this and the access logs simply show a trail of clicks.<br><br></div>
<div class="gmail_quote">On Wed, Jan 14, 2009 at 3:05 PM, mike <span dir="ltr"><<a href="mailto:mike503@gmail.com">mike503@gmail.com</a>></span> wrote:<br>
<blockquote style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid" class="gmail_quote">sounds like an application level issue to me, or how you determine<br>session names.<br><br>being behind a proxy would only change the IP (maybe) - which could be<br>
a factor in the session name.<br><br>also their login name changing from anonymous -> a logged in user could too.<br><br>but if this doesn't happen in the apache environment i'm not quite<br>sure. (thinking out loud)<br>
<br>i've never had a problem with session code portability. of course i<br>use mysql-backed sessions, but even file-based ones don't seem to be<br>affected.<br>
<div>
<div></div>
<div class="Wj3C7c"><br>On Wed, Jan 14, 2009 at 11:53 AM, Ilan Berkner <<a href="mailto:iberkner@gmail.com">iberkner@gmail.com</a>> wrote:<br>> Hi All,<br>><br>> Weird situation...<br>><br>> On our production environment, one of our users (I have remotely connected<br>
> to their system) is losing Session information as soon as they try to do<br>> anything past their login. Even stranger (I can tell via the title of the<br>> page) that the session information is getting mixed up. The title of the<br>
> page should be the user's name and after clicking on a page that requires<br>> session / cookie information, the title of the page changes to another<br>> user's name. So something isn't right...<br>
><br>> Our development environment (unfortunately) at this time uses Apache (we'll<br>> be upgrading it to Nginx shortly). This issue does not exist in our<br>> development environment.<br>><br>> The problem computer is behind a proxy and the proxy on that server is<br>
> configured as a "text" proxy (i.e. not ip address... rather proxy name). So<br>> I'm not sure if that would be an issue?<br>><br>> Is it possible that sessions are getting mixed up between users behind a<br>
> proxy who's name is the same?<br>><br>> Any suggestions / thoughts?<br>><br>> Thanks<br><br></div></div></blockquote></div><br>