pbaasch Posted May 28, 2022 Posted May 28, 2022 Hi, I have a new machine running Debian 11 with nginx and php fpm but if I login to the admin interface I get logged out after 30 seconds. I used the manual installation method as well as tried the automatic one with no luck. Any suggestions would be great.
0 d00p Posted May 28, 2022 Posted May 28, 2022 Check error log of webserver/php-fpm and verify that the local user for froxlor (default froxlorlocal) is owner of /var/customers/tmp/froxlor.panel/
0 pbaasch Posted May 29, 2022 Author Posted May 29, 2022 There is nothing in the error logs but I was able to figure out the issue. I'm using Cloudflare as DNS as well as a the SSL Proxy layer to provide SSL to protect the real IP address of my servers. Unfortunately this means that the client IP address may change every request. This has never been a problem with other control panels and shouldn't be an issue at all but Froxlor doesn't allow this due to the following line in the code which is a ancient way of security: https://github.com/Froxlor/Froxlor/blob/4750dad9e2ced4efb188e6659512bd49892ee762/lib/init.php#L236-236 Removing the above part of "AND `s`.`ipaddress` = :ipaddr" as well as the parameter in line 243 will fix this. I'll create a pull request later when I have time.
0 pbaasch Posted May 29, 2022 Author Posted May 29, 2022 Unfortunately this doesn't help as the session is IP based in the database table which it shouldn't be and still would force me to login again and again.
0 d00p Posted May 29, 2022 Posted May 29, 2022 Did you try? It's exactly what its ignoring for the sessions
0 d00p Posted May 29, 2022 Posted May 29, 2022 Oh wait, might be only for login action itself but not for checking session. Need to check. But not at 00:06 in the middle of the night
Question
pbaasch
Hi,
I have a new machine running Debian 11 with nginx and php fpm but if I login to the admin interface I get logged out after 30 seconds.
I used the manual installation method as well as tried the automatic one with no luck.
Any suggestions would be great.
6 answers to this question
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now