laurent wrote:
Users of mine are running into a problematic situation
where a page is
left in "edit" mode for several hours. At the end of the day they press
"Save" and instead of directly saving, the page shows up a preview.
Users have checked the "Remember me" box so that login shouldn't be an
issue here.
This is because the session eventually times out. With this gone, the security
token which protects against cross-site request forgery attacks can no longer be
confirmed and you have to go through one preview step while your session is
reestablished and a new token assigned.
In php.ini you'll find a number of options related to sessions, including:
; After this number of seconds, stored data will be seen as 'garbage' and
; cleaned up by the garbage collection process.
session.gc_maxlifetime = 1440
If you up that a lot, it might or might not help.
-- brion vibber (brion @
pobox.com)