On Feb 4, 6:43 am, SnappyDjangoUser <bpwall...@gmail.com> wrote:
> I am having a weird issue in which users are randomly logged out of
> the site and redirected to the login page. They must re-enter
> credentials before being able to continue browsing the site. The
> weird thing is I only see this on my production machine and not on my
> development box (both serving via Apache and mod_python, although
> different versions. I also have a different mysql database version in
> production than on my development box).
>
> Does anyone have any suggestions on how to debug? I do not know
> enough details about how sessions work to know where to start
> debugging.
>
> I am using the built-in auth.views import login, login_required,
> logout_then_login methods to handle session creation. I am using the
> default SESSION_COOKIE_AGE of 2 weeks and I set
> SESSION_EXPIRE_AT_BROWSER_CLOSE to True.
>
> I have looked at the django_session table and the table is small since
> the site just launched and there are no expired sessions in the table.
>
> The weird thing is that I do not see session entires deleted from the
> django_session table when the user selects logout (and
> auth.views.logout_then_login is called). I also do not see consistent
> behavior of session entires being created in django_sessions when the
> upon user login (auth.views.login is called).
>
> Any guidance would be appreciated. Thanks!
Are you running multiple Django sites mounted at different URLs under
the same host?
Used to be the case, not sure now, that the session cookie path would
be set to '/' meaning that you see interference between multiple sites
under same host if they all use login. To avoid this, easiest thing to
do is set SESSION_COOKIE_NAME differently for each site.
If the sites are not overlapping, could also set SESSION_COOKIE_PATH
to be their actual URL mount point rather than slash.
Graham
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups
"Django users" group.
To post to this group, send email to django-users@googlegroups.com
To unsubscribe from this group, send email to
django-users+unsubscr...@googlegroups.com
For more options, visit this group at
http://groups.google.com/group/django-users?hl=en
-~----------~----~----~----~------~----~------~--~---
