PEAK XOOPS - Preventing from time-out

| PHP | Site News | XOOPS |

XOOPS

XOOPS : Preventing from time-out

Poster : GIJOE on 2005-08-12 12:06:37 (113978 reads)

Session time-out make the visitors very disappointed if he/she try to post long articles.

But lengthen 'session.gc_maxlifetime' is danger because of "SESSION HI-JACKING".

Thus, I've tried to implement the "Heart Beat" method into XOOPS.

Just "copy a file" and "edit theme.html".

It is quite an easy hack.

put this file as XOOPS_ROOT_PATH/heartbeat.php
heartbeat.php


<?php

include "mainfile.php";

$interval = @ini_get( 'session.gc_maxlifetime' ) ;
if( empty( $interval ) || $interval < 180 ) {
	$interval = 1440 - 120 ; // PHP default : 1440sec (=24min)
} else {
	$interval -= 120 ;
}

echo '
<html>
<head>
<meta HTTP-EQUIV="Refresh" CONTENT="'.$interval.'" />
</head>
<body>
</body>
</html>
' ;

?>

Edit theme.html and insert <frame> or <iframe> tags reading heartbeat.php

eg) end of theme.html


</td>
</tr>
</table>
<!-- end footer -->

<!-- heart beat -->
<{if $xoops_isuser }>
  <iframe src="<{$xoops_url}>/heartbeat.php" width="0" height="0"></iframe>
<{/if}>

</body>
</html>

8 comments

Comments list

Re: ¥»¥Ã¥·¥ç¥ó¥¿¥¤¥à¥¢¥¦¥È¤òÈò¤±¤ë

Rollei Posted on 2006/4/9 15:39

GIJOE¤µ¤ó¡¢¤³¤ó¤Ë¤Á¤Ï¡£
¤½¤¦¤¤¤¨¤Ð¡¢¤³¤Î¥³¥á¥ó¥È¤·¤Æ¤¤¤Þ¤·¤¿¡£ÊÖ»ö¤ò¤¤¤¿¤À¤±¤Ê¤«¤Ã¤¿¤Î¤Ç¡¢¾¡¼ê¤Ë¡¢¥«¥¹¥¿¥Þ¥¤¥º¤¹¤ë¤ò¡Ö¤Ï¤¤¡×¤Ë¤·¤Æ»þ´Ö¤òÃ»½Ì¤·¤Æº£Æü¤Ë»ê¤Ã¤Æ¤¤¤Þ¤·¤¿¡£È¾Ç¯ÃÙ¤ì¤Î¤ªÊÖ»ö¤¢¤ê¤¬¤È¤¦¤´¤¶¤¤¤Þ¤¹¡£ÁáÂ®¡¢¡Ö¤¤¤¤¤¨¡×¤Ë½¤Àµ¤·¤Þ¤·¤¿

Re: ¥»¥Ã¥·¥ç¥ó¥¿¥¤¥à¥¢¥¦¥È¤òÈò¤±¤ë

GIJOE Posted on 2006/4/6 3:59

º£º¢µ¤¤Å¤¤Þ¤·¤¿¡£¡ÊÈ¾Ç¯°Ê¾å¡©¡Ë

°ìÈÌÀßÄê¤Î¡Ö¥»¥Ã¥·¥ç¥ó¡×¤Î»þ´Ö¤Ï¡¢¤Û¤È¤ó¤É¤Î¾ì¹çµ¤¤Ë¤·¤Ê¤¯¤ÆÎÉ¤¤¤È»×¤¤¤Þ¤¹¡£¤È¤¤¤¦¤Î¤â¡¢¥»¥Ã¥·¥ç¥ó¤ò¥«¥¹¥¿¥Þ¥¤¥º¤¹¤ë»ö¤ÎÊý¤¬¤è¤Û¤ÉÌäÂê¤À¤«¤é¤Ç¤¹¡£

¥»¥Ã¥·¥ç¥ó¤ò¥«¥¹¥¿¥Þ¥¤¥º¤¹¤ë¡¢¤Ë¤Ä¤¤¤Æ¤Ï¡¢¡Ö¤¤¤¤¤¨¡×¤¬¡¢¿ä¾©¤Ç¤¹¡£¥Ö¥é¥¦¥¶¤òÊÄ¤¸¤Æ¤â¥»¥Ã¥·¥ç¥ó¤½¤Î¤â¤Î¤¬À¸¤¤Æ¤¤¤ë¤Î¤Ç¤¹¤«¤é¡¢¤¤¤í¤ó¤Ê°ÕÌ£¤Ç´í¸±¤Ç¤¹¡£

É¬Í×¤Ê¤é¡¢¡Ö¥»¥Ã¥·¥ç¥ó¥«¥¹¥¿¥Þ¥¤¥º¡×¤»¤º¤Ë¡¢php.ini¤Ê¤ê¡¢.htaccess¤Ê¤ê¤Ç¡¢session.maxlifetime¤òÄ´À°¤¹¤ë¤³¤È¤Ë¤Ê¤ë¤Ç¤·¤ç¤¦¡£

Re: ¥»¥Ã¥·¥ç¥ó¥¿¥¤¥à¥¢¥¦¥È¤òÈò¤±¤ë

Rollei Posted on 2005/9/23 12:39

¤³¤ó¤Ë¤Á¤Ï¡¢rollei¤Ç¤¹¡£
¥Ï¥Ã¥¯¤ò»î¤·¤Æ¤ß¤Þ¤·¤¿¡£¤¿¤·¤«¤Ë¥¿¥¤¥à¥¢¥¦¥È¤·¤Ê¤¯¤Ê¤ê¤Þ¤·¤¿¡£¤½¤³¤Ç¤ªÊ¹¤¤·¤¿¤¤¤Î¤Ç¤¹¤¬¡¢°ìÈÌÀßÄê¤Î¡Ö¥»¥Ã¥·¥ç¥ó¡×¤Î»þ´Ö¤Ï²¿Ê¬¤Ë¤¹¤ì¤Ð¤¤¤¤¤Î¤Ç¤·¤ç¤¦¡©¡¡¥Ç¥Õ¥©¥ë¥È¤Ï¤¿¤·¤«15Ê¬¤À¤Ã¤¿¤È»×¤¤¤Þ¤¹¤¬¡¢¤â¤Ã¤ÈÃ»¤¯¡¢¤¿¤È¤¨¤Ð£µÊ¬¤È¤«¤Ë¤·¤Æ¤ª¤¯Êý¤¬¥Ù¥¿¡¼¤Ê¤Î¤Ç¤·¤ç¤¦¤«¡©

Re: ¥»¥Ã¥·¥ç¥ó¥¿¥¤¥à¥¢¥¦¥È¤òÈò¤±¤ë

Rollei Posted on 2005/9/6 1:32

ÂÔ¤Ã¤Æ¤¤¤Þ¤·¤¿¡ª¤È¤¤¤¦µ¤»ý¤Á¤Ç¤¹¡£
ÁáÂ®»È¤Ã¤Æ¤ß¤Þ¤¹¡£

Re: Preventing from time-out

GIJOE Posted on 2005/8/28 16:13

Prolonging session by "heart beat" and "autologin" are quite different each other.

If you want to test it, try to delete all records in the session table by phpMyAdmin or mysql command.

Re: Preventing from time-out

greywolf Posted on 2005/8/26 23:49

Sorry, if this sounds stupid, but does the autologin hack not also prolong the session ?

Re: Preventing from time-out

indream Posted on 2005/8/19 23:53

testing

Re: Preventing from time-out

Bahattee Posted on 2005/8/15 9:46

Very cool! Thanks!

View more comments...

Lost Password?

Register now!