Using a custom session_start_safe

This fixes path issues, where the session directory ends up not writeable.
2026-03-06 00:34:00 +01:00 · 2014-12-01 16:45:49 +01:00
parent b50bc5e598
commit 29857e7d70
1 changed files with 22 additions and 4 deletions
--- a/lib/settings-common.php
+++ b/lib/settings-common.php
@@ -15,12 +15,30 @@ $context = stream_context_create(array('http'=>
 	)
 ));

+// sets up a session, either with the local tmp directory or with the default directory
+function session_start_safe() {
+	// Trying with the local path
+	session_save_path(dirname(__FILE__).'/../tmp');
+	session_start();
+ 	if(!$_SESSION['working']) $_SESSION['working'] = true;
+	session_write_close();
+	unset($_SESSION);
+ 	// Let's see if that worked
+ 	session_start();
+	if($_SESSION['working']) {
+		unset($_SESSION['working']);
+		return; // we've got a working session
+	} else {
+		// Create a new session with the default path.
+  		session_destroy();
+  		session_save_path('');
+  		session_start(); 
+	}
+}
+
 // Start a session if we haven't already
 if(!isset($_SESSION)) {
-	session_save_path(dirname(__FILE__).'/../tmp');
-	// Make the session cookie HTTP only
-	session_set_cookie_params(0, '/', '', false, true);
-	@session_start();
+	session_start_safe();
 }

 // Set the language file, if now possible