A week or so back, to help fix a session timeout issue a /includes/extra_configs/samesite_cookie.php file was created. When I did the upgrade to 1.5.7a this file was not included so I removed it from the site.
I am running Zen-Cart 1.5.7a (just upgraded from 1.5.7) on an Ubuntu 18.04 Linux server with 7.4.12 php and MySQL 5.7.32-0ubuntu0.18.04.1 Plugins Abandon Carts, Site Map and Google Feed. No debug logs generated.
Credit Card payments use the Epath module (the current one now in the download area dated 7/3/20)
Error can be duplicated on test site: www.alt.shirtcrazy.com with the file present and Chrome failing. If it needs removed let me know and I will pull it so you can test the other set of circumstances. I do not have a second site upgraded yet to make both available.
With this file removed to match the file list of 1.5.7a you get Whoops Session Timeouts when using a credit card. I made multiple tests on IE, Fire Fox and Chrome all fail, also the Chrome sign-in will not allow you to log in and try again.
With the file present, IE and Firefox work and I got no errors in testing.
Chrome gives a Whoops timeout message every time you try to sign in. I tried from the whoops screen and using the login button and if you try to order an item you get the Whoops screen as soon as you click Add to Cart. Then I tried on a completely different machine and it also gave the whoops screen as soon as I tried to log in.
I do not know if code was changed elsewhere that led to the deletion on the samesite_cookie file or if it was accidentally left out but causes a failure on chrome when installed. Either way neither configuration works 100%
Any help in resolving this would be much appreciated.
Bookmarks