Check out the LimeSurvey source code on GitHub!

Sessions expire almost immediately after installed update

More
4 years 10 months ago - 4 years 10 months ago #78502 by ebchang
I just installed the latest update using the "easy" method. (Version 1.92+ Build 120412) Since then sessions don't persist. Subjects can't continue from the initial welcome page to the first screen of questions - they get the "We are sorry but your session has expired." message.

Logged in as admin, I get prompted to re-login after every couple of actions.

I managed to increase the value for session lifetime, but that doesn't help.

Any ideas what is happening and how to fix it?

Note: I increased max_input_vars as mentioned in another post about expiring sessions, but it didn't help. And the problem occurred immediately after updating limesurvey, not PHP.
Last Edit: 4 years 10 months ago by ebchang. Reason: added note

Please Log in to join the conversation.

More
4 years 10 months ago #78508 by DenisChenu
Hello,

Did you have access to server log ?
Can you look at a phpinfo file for: session.save_path and suhosin.cookie.encrypt .

Denis

Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand (or search sondages pro).

Please Log in to join the conversation.

More
4 years 10 months ago #78510 by c_schmitz
So, what was your previous version?

Best regards

Carsten Schmitz
LimeSurvey project leader

Please Log in to join the conversation.

More
4 years 10 months ago #78531 by ebchang
The previous version was the immediately preceding update, build 120405. There were no problems with it. I've been checking weekly and doing the updates suggested using the "comfort update."

Everything has been very smooth until this last update. The problem appeared immediately after the update.

It came to my attention when a subject emailed me to report that she couldn't get past the welcome screen. First click on "Next" appeared to do nothing, second brought the message session not valid. Similarly, I can initially log in as admin, but the moment I try to go beyond the welcome screen I get prompted to login again.

Denis, session.save.path is /var/lib/php/session. There is no suhosin.cookie.encrypt variable, and no "suhosin" in any variable. PHP version is 5.3.10, build date Feb 2, 2012.

Please Log in to join the conversation.

More
4 years 10 months ago #78532 by DenisChenu

ebchang wrote: Denis, session.save.path is /var/lib/php/session.

Good for suhosin.

It's a dirty hack, but try:
session_save_path ($rootdir.DIRECTORY_SEPARATOR.'tmp' );

at the end of your config.php. If it work, remove it quiclky, because session become accessible via the web server. It's just for testing.

Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand (or search sondages pro).

Please Log in to join the conversation.

More
4 years 10 months ago #78534 by ebchang
That worked! I have removed the line.

Please Log in to join the conversation.

More
4 years 10 months ago #78538 by DenisChenu
Then there are some rights problem in your installation.
Maybe some suphp or apache user right.

Use
session_save_path ('/tmp' );
And talk with the admin sys :)

Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand (or search sondages pro).
The following user(s) said Thank You: ebchang

Please Log in to join the conversation.

More
4 years 10 months ago #78540 by ebchang
Apache can create the session files in /var/lib/php/session, but they are empty even though it has write access to them.

The session files created in tmp when I tested do have content added.

Limesurvey seems to be the only application on the server that is currently using PHP sessions, so I cannot tell if the problem is universal.

Please Log in to join the conversation.

More
4 years 10 months ago #78541 by ebchang
Thank you for the temporary fix. I will work with the system admin to find a long term solution.

Please Log in to join the conversation.

More
4 years 10 months ago #78556 by DenisChenu

ebchang wrote: Thank you for the temporary fix. I will work with the system admin to find a long term solution.

Did apache have execute right in whole /var/lib/php/session ( /var/ + /var/lib/ + /var/lib/php/ + /var/lib/php/session)

Denis

Assistance on LimeSurvey forum and LimeSurvey core development are on my free time.
I'm not a LimeSurvey GmbH member, professional service on demand (or search sondages pro).

Please Log in to join the conversation.

More
4 years 10 months ago #78564 by ebchang
In case anyone has a similar problem, I report that in this case it was not a permissions issue but apache's quota on /var. Some subjects have been leaving the questionnaire without saving, accumulating some large session files in the directory. It was apparently a coincidence that the problem was reported right after the update - possibly because of increased activity, or possibly it's been happening intermittently and this was just the first user to bother to report it.

Please Log in to join the conversation.

More
4 years 10 months ago #78626 by Mazi
Thanks for your feedback. Please add your solution at docs.limesurvey.org/Installation+FAQ&str...tions+for+LimeSurvey

Thanks!


Best regards/Beste Grüße,
Dr. Marcel Minke
(Limesurvey Head of Support)
Need Help? We offer professional Limesurvey support
Contact: marcel.minke(at)survey-consulting.com'"

Please Log in to join the conversation.

Imprint                   Privacy policy         General Terms & Conditions         Revocation information and revocation form