I'm banging my head against this for a long while now, so it's time to throw it in the group (if only to share the pain
I have a website which is basically an image gallery. For some users (less than 1%) the session is not remembered when a new window is opened, which leads to the login being lost.
I'm passing the session data in the url with PHPSESSID=, but Apaches error log is full of the following errors (also for my own IP).
Code: Select all
PHP Warning: Unknown: The session id contains illegal characters, valid characters are a-z, A-Z, 0-9 and '-,' in Unknown on line 0, referer: http://server1.cgtextures.com/texview.p ... b63127aeed
PHP Warning: Unknown: Failed to write session data (files). Please verify that the current setting of session.save_path is correct (/var/lib/php/session) in Unknown on line 0, referer: http://server1.cgtextures.com/texview.p ... b63127aeedEven though the error logs state that the session data cannot be written, they are still sucessfully written in /var/lib/php/session, with the correct data in the file.
I get the session data with: $session_propagator = '&PHPSESSID=' . session_id(); and simple glue it to the end of the URL in the link. (I have tried getting the session name as well, in case the browser has a custom session name, but this doesn't solve the problem).