php - Session overlap, 2 users logged in somehow the system sees them as one -
Hardly our system is logged into users and I do not understand why.
Scenario: 2 User Login (A & B) Normally everyone has their own ID, at some point the user (A) takes the ID of another user (B) and contributes to the website Like it is B.
Technically this is happening:
1-2 users log in: Each user requests a "login" action from the Single Signon (SSO) server That runs on PHP, and a session is created for each user (sessions are stored in Memkach-X)
2- Users have different IDs: On each user's web server The second session will also be run on Ruby (ROR) at Memcached-Y Scripture saves each page they enter the RoR, is an iframe Czech who requests authentication SSO user browser. 3- At some point, User A resides in the form of B and BB: The log files SSO states that User A is still User A and User B is still User B, while ROR The logs show that user AB is given, it is still the same session ID. At that particular moment we checked the keys coming from ROR's memcatch and they returned the correct value.
What's going on? Is the SSO incorrectly given the ROR, or did the ROR have got everything or are the memorycat servers making mistakes?
Please help me run out of ideas ... thanks.
Is checking time to use a session? If it always changes to User B, then user A (I assume that user A log has been assumed in advance), then the user may see the session information and type over time.
It seems that in communication between the ROR and the SSO, if both logs are validating the correct user id / session ID, then it should be between the time when it is checked?
Comments
Post a Comment