kmbuthia
Forum Replies Created
-
IT WORKS!! 🙂 🙂
This was giving me a hard time for two days now.
A small clarification though. I thought you meant that I should add that code/file to the root folder where ninjafirewall is installed. I actually had to add it to the root folder of the sub-directory where the Drupal site is installed. Once I did that (and clear relevant browser caches), it worked like a charm.
Thanks a lot for the help. I definitely wouldn’t have been able to solve that one on my own.
OK so my other applications are in sub folders and each have their own domain. Ninjafirewall is installed in the root folder and the other websites are installed in sub-folders, and each website in a sub-folder has it’s own domain configured to point to that sub-folder.
I’m pretty sure the cause is the ninjafirewall plugin in the root folder, because the moment I disable it, I am able to log into the Drupal sites installed in the sub-folders. I’ve checked on any cache and CDN that may affect this but the one thing that is clear is the minute I disable the firewall completely, session cookies created by Drupal when logging in are no longer destroyed immediately they are created. That is what I’ve noticed.
I’ve tried disabling all policies but it didn’t work. The only way to stop the Drupal session cookie from being destroyed right after creation is to disable the firewall completely.
Warm regards,