Upgraded to 5.3.9 and can not login

[vincent_g]

So far this is not been a fun upgrade.

 

Tech support tells me that these two settings should be set to off.

 

session.cookie_httponly = 0

session.use_only_cookies = 0

 

So I put a ini file in the admin folder to set this.

 

From my research this does not sound right to me that this should be a problem as these values default to true in PHP and Cpanel installs.

 

These settings were created by PHP to add security when enabled!

 

So why would this be required to false now?

 

And if this is required to be set to false what folder does this script run in?

[mihosting]

I have the same problem. I have open ticket, but no solution by now.

 

I have to whmcs installs in the same server. One works , and other does not. So I guess it is no related to cookies.

[slim]

Did you upload the patch INTO THE ADMIN FOLDER?

[mihosting]

- - - Updated - - -

 

Did you upload the patch INTO THE ADMIN FOLDER?

 

yes.

 

I have 2 installs in the same server. I did exactly the same. One works, other no.

[dacstyle]

I have the same Issue. The Patch file is already in the admin folder but I cant Login.

 

Ticket has no response.

[mihosting]

Ticket has no response.

 

Hopefully they are working in a solution . This is why so many are moving to blesta. Whmcs fix somting and breaks something, Is the microsoft of the hosting enviroment.

[imaticon]

session.cookie_httponly = 0

session.use_only_cookies = 0

 

Is this definitely mandatory?

[mihosting]

Is this definitely mandatory?

 

For sure NOT.

 

and it will not fix the problem.

[yabdab]

Same problem here. I have 2 installs, first one works fine, second one, cannot login.

[aspidagrant]

I can't log in either. I have two factor auth activated and I am not sure if that is causing the issue. I enter my username and password and it goes to the authentication page. Once I enter the 2 factor code, it just refreshes and takes me back to the log in page. Same thing for everyone else?

[aspidagrant]

There is a fix for this issue:

 

http://forum.whmcs.com/showthread.php?92550-Case-5077-Two-Factor-Auth-redirecting-to-Admin-Login-for-5-3-9-release-1

[vincent_g]

In my case it was a line in the config file

 

session_name("WHMCS");

 

Removing the line fixed the problem.

 

I have had that file unchanged going back to version 3.8.1

[clopezi]

Hi,

 

I have the same problem, and no 2FA auth enabled.

 

This is unacceptable in a pay software

 

Update: I can login in firefox, not in chrome. I deleted all cookies in chrome, and the problem still there.

Edited August 27, 2014 by clopezi

[Kontrolit.net]

Same issue here but can't login anywhere.

[openmind]

Did any of you actually test the upgrade on a non-production server?

[clopezi]

In Chrome for Android does not work me. I deleted cookies and either.

 

If we paid a license is for a tested software. And no answer yet.

 

In other paid software as cPanel this is unthinkable.

[openmind]

In Chrome for Android does not work me. I deleted cookies and either.

 

If we paid a license is for a tested software. And no answer yet.

 

In other paid software as cPanel this is unthinkable.

This is web based software not server based, comparing with cPanel is apples and pears.

 

The point I'm making is that you are complaining that you didn't test the software on a non-production server, you just assumed it would be OK and now you have a problem and are demanding it be fixed.

 

Moral of the story, use a staging server if your production environment is really that critical and avoid the pain.

[clopezi]

This is web based software not server based, comparing with cPanel is apples and pears.

 

The point I'm making is that you are complaining that you didn't test the software on a non-production server, you just assumed it would be OK and now you have a problem and are demanding it be fixed.

 

Moral of the story, use a staging server if your production environment is really that critical and avoid the pain.

 

Can i try WHMCS FREE to test it? No... and maybe the test enviroment is ok and production not...

 

According to your theory, women are raped because they are causing.

 

I pay for software that is tested. It may contain bugs, sure, but a bug login ... is inadmissible.

[openmind]

Can i try WHMCS FREE to test it? No... and maybe the test enviroment is ok and production not...

 

Actually you can, you can get a development license FOC simply by asking for one as long as you have your license is purchased from WHMCS.

According to your theory, women are raped because they are causing.

Sigh. Now you're being ridiculous...

 

The point I'm making that you are clearly missing is that it is not anyones responsiblity but your own that software you install in a production environment is performing as expected.

 

Every time an upgrade comes out we test the hell out of it on a staging platform to make sure it doesn't break anytthing and cause us problems. I would suggest you do the same.

[imaticon]

Hi all,

 

I just did an incremental update from 5.3.8 to 5.3.9. No issues with the login. It works for me as expected. However, I do not use 2FA so I cannot share experiences with that.

 

Every time an upgrade comes out we test the hell out of it on a staging platform to make sure it doesn't break anytthing and cause us problems. I would suggest you do the same.

 

Yes, this is the way to go

 

Regards,

Marco

[natselection]

FWIW I had the same issue and realized I dropped the hot fix file into the root folder and not the admin folder. Replacing the file in the root folder with the original and putting the hot fix in the admin folder fixed it.

[visualtron]

There is a fix for this issue:

 

http://forum.whmcs.com/showthread.php?92550-Case-5077-Two-Factor-Auth-redirecting-to-Admin-Login-for-5-3-9-release-1

 

 

I tried this although I don't use 2-FA login, but it doesn't work anyway.

 

For my case, I upgraded from V5.2.17. I'm getting the following error the first time I try to login after upgrading:

 

Notice: crypt_random_string requires at least one symmetric cipher be loaded in C:\Inetpub\wwwroot\includes\classes\phpseclib\phpseclib\phpseclib\Crypt\Random.php on line 234

 

My environment: PHP Version 5.2.6

System: Windows NT VPS117 5.2 build 3790

[shahidnoorai]

We have the same problem. 2FA has not been enabled. Anybody found any solution?

[vivaciti]

I also cannot login although I cant log in using IE or chrome!

Along with a number of other problems we have had since upgrading our version of PHP, this is getting to be the last straw, I agree that this is paid for software, and although again bugs have to be found one that stops your ability to log into the software to use it really is going a little above a joke.

[vivaciti]

After doing some checking myself it would seem the login issue is down to very complex and long passwords, we have now managed to log in using a staff members details where the password was not overly long or complex, changed the passwords for the other accounts to something a little less complex and now we can log in, although I would much rather be able to bring it back up to a very complex password again.