opencart icon indicating copy to clipboard operation
opencart copied to clipboard

Published 20 hours ago verified publisher icon vuefront

authorization is missing

Open sivakumarkoduru opened this issue 4 years ago • 1 comments

  1. i can edit account information, change password, add address if page is not refreshed.
  2. Now if i page refresh i can't edit account information etc details.

I think we are not checking is a valid user to change his account details.

$this->customer is null once you refresh the page. can you give me some information how you are persisting $this->customer in php side for further requests.

sivakumarkoduru avatar Jun 29 '20 03:06 sivakumarkoduru

It's issue with cookies, your session in cookies isn't properly saved which causes this. Weird enough, it's made on session states instead of stateless JWT or something similar. You can try disabling SameSite for opencart but i'm not sure where that can be done.

rivor avatar Sep 01 '20 03:09 rivor