Lee - when you moved your site, you didn’t do any direct MySQL manipulation on the data itself, did you?

The only thing I did was update the user password because I forgot what it was.

I have tried creating a new user as well to see if something was wonky there, I gave the new user super admin levels and they still get the SOS.

-Lee

*Edited - I couldn’t even make sense of that sentence*

Working on figuring out what may be going on here, just trying to figure out what we may have missed. Will update here soon. =)

Lee, when you login via the Control Panel, with the system online, are you showed as being logged in on the front end?

And when you say you’re using a custom system offline message, what precisely have you modified?

As a side note, I’ve performed support on government sites before that had tightly controlled access before; in those cases the organizations just had me enter into NDA to help provide support to the development firm.  Have you inquired with the client about this?

Hey Derek,

So when I login to the CP and then browse to the front page (I have to turn the system on for this right now) I am not logged in. Then when I try and go back to the CP I have been logged out from it. If I login to the front end it properly identifies me however I have to login to the CP again.

As for the NDA we are working for a firm working for the Gov and they have flat out denied my request and have basically stated that as this has already cause a days loss they might be willing to start from a clean 1.6.4 install and build out stuff back in ontop of that (Which I really don’t want to do :( )

-Lee

Can you try it with cookies only, please, Lee, for both the CP and front end?  When you are logged into the CP, you should automatically be logged into the front end.  If this isn’t occurring, then there’s definitely an issue.  Can you email me the name of the domain so I can rule out a TLD problem with the cookie?  And is there anything else about the environment that should be known?  Control Panel accessed on the same domain (not a subdomain)?  CP behind SSL?

Hey Derek,

When I check the cookie info for a working site that I have I get

When I check the broken site I get

However the cookie domain is correct in both cases.

-Lee

exp_last_activity, exp_last_tracker, and exp_last_visit are visitor cookies and will always be set when visiting an ExpressionEngine site.  The other cookies you see on the working site are cookies only set for logged in members.  Can you switch your CP and front end to use cookies only and try again?  If you can answer the other questions in my previous post as well, please, it will be most helpful.

Hey Derek,

So when I try to update the system to operate on cookies only it wont let me change from session id for the cp setting.

So during this break I have tried to move another site from the development server to an enginehosting account and sure enough I am experiencing the same issue. In the past when I moved a site from the development server to the live server we had issues with other things. I think at this point it will just be easier to rebuild from a clean build.

However Derek can you email me the support login request form and I will set you up with an account on the most recently moved site. When we find the fix for it as it has the exact same issues we might be able to fix the other one.

-Lee

You are overriding that value in your config.php file, Lee.  Email sent.

I had figured that out and updated that.

It works now, however I wonder why sessions does not work on the server.

-Lee

Were your user sessions also set to Sessions Only?  If there were any cookie component, then a CP Session login would not leave you logged in on the front end.  Or if you accessed the front end without your session id in the URL.

They were both set to sessions at the time.

I will dig some more and see what I can find. As it stands both sites work now and I am heading home.

Thanks for your help Derek, Lisa and Greg.

-Lee

Sessions only, maybe the session id was getting dropped frontend?  I’ll leave this one running in case you spot something in later digging.  Glad they got you in, though.

CI Lee - 06 October 2008 07:03 PM

I had figured that out and updated that.

It works now, however I wonder why sessions does not work on the server.

-Lee

Sessions would not be an issue server side as they are fully handled by EE, EE generates and stores its own session IDs in the database, so if you could login to the cp, and were staying logged in to the CP, then sessions were working.

It still seems that, like Derek said, if you had sessions only set, your accesses to the front-end would also have to have the session ID in the URL, same as the back-end to function.  If you did not see the session ID in the front-end URL, like you would in the CP, then it would not know what session to tie your access to, and you would not be seen as a Superadmin on the front-end.