KCFinder with CDbHttpSession

drumaddict · May 29, 2011, 12:27pm

I have been using this very handy editor/FileManager bundle

It’s a CKEditor with KCFinder,the free alternative to commercial CKFinder,a nice File Manager.

So ,KCFinder reads configuration from session,for security reasons,so that guest users cannot upload files.

Eveything worked fine,until I decided to use [size="2"]CDbHttpSession [/size]for my sessions instead of default [size="2"]CHttpSession.[/size]

Well,that broke KCFinder,for reasons that would bore you to death if explained.I have 3 questions:

Has anybody got this to work?(KCFinder with CDbHttpSession)

I can make this work If I sacrifice security,just change a disabled property to false in config.

   	Doing so,it would be possible for a guest user ,IF he knew the request URL  for KC Finder,to use KCFinder,

I don’t see how a non registered user could use KC Finder since I use this only on admin pages where only admin members have access.So is this really a security issue at all??

An alternative solution?? (editor/FileManager bundle )

Thanks in advance.

Vedran · November 6, 2011, 9:57am

Did you managed to solve this?

Currently I am desperate to find a solution. Heeeeelp!

Vedran · November 6, 2011, 10:53pm

Hello? Anybody?? Pleaasee?

tfotis · November 20, 2012, 8:41pm

I wrote a how-to about syncing the sessions between Yii and KCFinder when using CDbHttpSession