Vanilla 1 is no longer supported or maintained. If you need a copy, you can get it here.
HackerOne users: Testing against this community violates our program's Terms of Service and will result in your bounty being denied.

sign in doesn't stick

edited April 2006 in Vanilla 1.0 Help
Vanilla is up and running on my server. When I sign in, it will accept my name and password, and take me to the discussions page, but says that I'm not signed in. Usually the second or third time I sign in, it will stick. Any suggestions?


  • MarkMark Vanilla Staff
    The initial sign in is handled by php sessions. It sounds like you may have some php setup issues. Do you have any other software that requires sign-in that you are currently using? Are there any problems with that other software?
  • Nope. However, after some more fiddling with it, turns out it will only show me as signed in if I check "Remember Me".
  • MarkMark Vanilla Staff
    Well, the reason that works is because when you check the "remember me", it saves a cookie to your browser and uses that cookie to authenticate you when your php session isn't there. Essentially, your php sessions aren't working properly, and right now you are being validated against the database based on your cookie values every time you load a page. If you go to your account page, look at your visit count. Then refresh the page and you'll see it go up one. Every time you refresh the page it will continually go up one - and that's because it's trying to create a new php session every time you load a page - based on your cookie credentials. You should really get the php session problem sorted out. If you have shell access you can do it yourself. If you don't, you should contact your ISP and tell them that php sessions aren't working properly.
  • I will do that. Thank you!
  • I'm having a similar issue. But I dont think it has anything to do with php sessions. (might be wrong there) I sign in at and I'm then forwarded to without the "www" and its says im not signed in. If i then manually add the www's all is fine. Any ideas why. Cheers.
  • i suspect thats due to your cookie domain setting. There's a possibility that if your cookie domain is set as www. and it browses through then the cookie might not have effect. I suggest you either alter your cookie domain or the web-path to match.
  • MarkMark Vanilla Staff
    cookies are based on domain. If you create a cookie that is associated with and then try to look at, it won't see the cookie and vice versa A neat trick you can do with your cookie domain setting is to assign it to "" (notice the period) instead of "" or "". This will tell php that your cookie is associated with * and will use the same cookie for all subdomains.
  • Cheers guys all sorted now. Those damn cookies. Thanks
  • while kinda on this subject, why do I have to sign in on every visit even though i select to do it automagically? i'm using Safari (and Shiira), I bet it's because you don't care about Safari users ;)
  • MarkMark Vanilla Staff
    There's nothing fancy about how I create cookies. I just use the standard php function. If you are having problems with your cookies, chances are that it has something to do with your browser. Perhaps try manually deleting all cookies associated with
  • lechlech Chicagoland
    on the current version (0.9.2.x) cookies are still a bit fubar, right, mark?
  • I have to constantly sign in with this board and my vanilla board. I thought it was something I'd broken.
  • lechlech Chicagoland
    nah, next version should have the cookies issue resolved fully, at least that's what we've been told :D
  • I can confirm that safari is a little strane with cookies on the whole. It is not just a lussumo/ vanilla thing. If it really bugs you, I suggest you turn AutoFill on.
  • I have a website that defines an iframe and I have Vanilla running from a secondary website within that Iframe. Everything seems to work fine but I have this same problem - user logins timeout. I don't know much about web programming but would the cookies in this instance be considered "3rd party"? can vanilla be expected to work like this - running from a different website?
  • MarkMark Vanilla Staff
    It should be just fine. Have you tested vanilla sessions when accessing vanilla directly and not through the iframe? Do they work?
  • Not thoroughly - but i'll try and get back to you
  • My site also runs within an iframe, due to the setup of the .com address.
    I created this extension and javascript to let the forum break free from frames.
    go to discussion
  • <b>mark:</b> I'm having no problems with the sign in sticking running directly from the secondary site. are the same cookies used when running directly or from a secondary sight? <b>ben:</b> I'm perfectly happy keeping the iframe - i did that by design - it makes the forums look like part of the site and Vanilla has such a nice, clean, uncluttered interface that it fits in well.
  • MarkMark Vanilla Staff
    That is odd. What browser are you using? Have you tested it in other browsers (through the iframe)?
This discussion has been closed.