Does SMF 1.0.2 can be used when cookies are disabled ?

[micaug]

Hello,
I've just installed SMF 1.0.2?. Cookies were enabled during installation and admin account creation.

After, I disable cookies. Now, I can't logging.
I tryed with FireFox 1.0.1  and IE 6.

But I can connect to this user forum with cookies disabled !. (but, it's SMF 1.1 Beta 1).

So, does SMF designed to be used with cookies disabled ?

If "yes", can you help me.
Here is a link to phpinfo : cotisplus.sitew.org/phpinfo.php [nofollow]

and cotisplus.sitew.org [nofollow] the link to my forum. You can signon with id=test and pw=test.

Thanks for your help.

[[Unknown]]

Actually, both SMF 1.0 and 1.1 can work with cookies disabled.  However, they should be disabled ALL THE TIME, not in the middle of usage.

-[Unknown]

[micaug]

The login takes place by setting a cookie. So if coolies are disabled you can only browse the forum as a guest. Your forum is then accessible if you have set the permissions such that guests can browse the forum...

In this case, I don't anderstand why I can write this message on this site (SMF SMF 1.1 Beta 1) while cookies are disabled  (with Firefox 1.0.1)

More and more people disable cookies because they are afraid by security problems. It's not ease to explain to a "basic user" that you don't know that he can activate cookies for your site. Many users prefer leave the site.

[andrea]

Please ignore my reply - it was wrong. Login without cookies works perfectly (see below).

[[Unknown]]

If you are logged into this forum then cookies are not disabled...

Andrea, that statement has not been correct since YaBB SE.  I'm sorry.

-[Unknown]

[andrea]

How then can he be logged in without a cookie is set?

[[Unknown]]

How then can he be logged in without a cookie is set?

It uses sessions, and makes sure every URL and form includes information about the session.  You can log in, post, and do various things all without having cookies enabled. The only trick is that it has to be able to detect that they're disabled, and so if you have them enabled and then disable them, it will get confused.

-[Unknown]

[andrea]

But on the local pc - the session is stored as a session cookie. Can it store a session cookie when cookies are disabled?

[[Unknown]]

But on the local pc - the session is stored as a session cookie. Can it store a session cookie when cookies are disabled?

Yes, but all the URLs will look like this:

http://www.simplemachines.org/community/index.php?board=9.0;PHPSESSID=abcdef1234567890abcdef1234567890

-[Unknown]

[andrea]

Interesting. I admit that so far I haven't cared about working without cookies. Just did some tests which fully confirm what you wrote. 

Just did some tests with MSIE, all cookies disabled. In this forum it works flawless, and this reply here is posted without cookies.

It also worked in an own forum wich is on version 1.0 .

[andrea]

Hello,
I've just installed SMF 1.0.2?. Cookies were enabled during installation and admin account creation.

After, I disable cookies. Now, I can't logging.
I tryed with FireFox 1.0.1  and IE 6.

But I can connect to this user forum with cookies disabled !. (but, it's SMF 1.1 Beta 1).

So, does SMF designed to be used with cookies disabled ?

If "yes", can you help me.
Here is a link to phpinfo : cotisplus.sitew.org/phpinfo.php

and cotisplus.sitew.org the link to my forum. You can signon with id=test and pw=test.

Thanks for your help.

I was able to login into your forum with your test account without cookies. However the login works only after clicking the "login" button. It did not work when trying to login with the initial "Warning! Only registered members are allowed to access this section." form.

[micaug]

andrea

It's right, I can log if I use the login botton. Thanks.

But, it seem that there is a bug with the initial "Warning! Only registered members are allowed to access this section." form.

If this form is display when a user arrives on my forum, he will not think to use the botton.

Is there a "correction" ?

[[Unknown]]

The initial page works fine for me with cookies all deleted and disabled.

-[Unknown]