I added some more $_SESSION[] strings for other pages not related to the login process. I wouldn't expect that to cause problems on zen_session_recreate. As I said, the logging in is not a problem, but creating a new account is. It makes no sence to me.
After doing some reading, I updated the function with:
PHP Code:
function zen_session_recreate() {
global $http_domain, $https_domain, $current_domain;
if ($http_domain == $https_domain) {
// chaged to
$oldSessID = session_id();
session_regenerate_id();
$newSessID = session_id();
whos_online_session_recreate($oldSessID, $newSessID);
/* removed
$saveSession = $_SESSION;
$oldSessID = session_id();
session_regenerate_id();
$newSessID = session_id();
session_id($oldSessID);
session_id($newSessID);
if (STORE_SESSIONS == 'db') {
session_set_save_handler('_sess_open', '_sess_close', '_sess_read', '_sess_write', '_sess_destroy', '_sess_gc');
}
session_start();
$_SESSION = $saveSession;
if (IS_ADMIN_FLAG !== true) {
whos_online_session_recreate($oldSessID, $newSessID);
}
*/
} else {
//unchanged section ...
}
}
This did not change anything. I am still open to any ideas.
Bookmarks