Yii2: Yii 2.0.17 + Yiii2-mongodb ~2.1.0 Flash message does no work

Created on 19 Apr 2019 · 16Comments · Source: yiisoft/yii2

If using MongoDB as session storage, Flash messages do not work.

'session' => [
            'name' => 'backend',
            'class' => 'yii\mongodb\Session',
            'sessionCollection' => 'BackendSessions',
],

/**
     * Changing user password
     *
     * @param string $id User id
     * @return mixed
     * @throws NotFoundHttpException
     */
    public function actionChangePassword($id)
    {
        $model = User::findOne($id);
        if (empty($model)) {
            throw new NotFoundHttpException("User specified not found!");
        }

        $password = User::generateRandomPassword();
        $model->setPassword($password);
        $model->generateAuthKey();

        if ($model->save(false)) {
            \Yii::$app->session->setFlash('success', 'New password was set: "'.$password.'"');
        } else {
            \Yii::$app->session->setFlash('error', 'There was an error changing password!');
        }

        return $this->redirect(['view', 'id' => $id]);
    }

Message is list after redirect. It works if I stop storing sessions in MongoDB.

bug

Source

webspec2012

Most helpful comment

Mongodb Session class not extends DbSession.

webspec2012 on 12 Sep 2019

👍2 😄1

All 16 comments

The problem is here in latest framework version. It works well with 2.0.15.1.

webspec2012 on 10 Sep 2019

I've translated issue into English so community can participate as a whole.

If the version of MongoDB was not changed, then it seems the problem is somewhere in the framework. Since you have a clear way to reproduce it please do bisect to find out exact commit that broke it. Here's how: https://git-scm.com/docs/git-bisect or in Russian: https://git-scm.com/book/ru/v1/Инструменты-Git-Отладка-с-помощью-Git

samdark on 10 Sep 2019

This problem after commit:

https://github.com/yiisoft/yii2/commit/8bb334b9ae5760f5ad3548f449bf4fe5b9d98d22

Class yii\mongodb\Session extends MultiFieldSession

Function MultiFieldSession::composeFields was changed.
If you return the old feature code, it works fine.

webspec2012 on 11 Sep 2019

@webspec2012 can you check if it's https://github.com/yiisoft/yii2/commit/8bb334b9ae5760f5ad3548f449bf4fe5b9d98d22#r33018458?

samdark on 12 Sep 2019

The session ID changes from one page to another.

db.BackendSessions.remove({});
WriteResult({ "nRemoved" : 4 })

refresh site page by F5

db.BackendSessions.find().pretty();
{
"_id" : ObjectId("5d79f9882893100f3029bfa4"),
"id" : "3racnq6iq3gtm8ma3has4nueva",
"data" : "__flash|a:0:{}__id|s:24:\"5a65db240a64100202b7ca65\";"
}

refresh site page by F5

db.BackendSessions.find().pretty();
{
"_id" : ObjectId("5d79f9882893100f3029bfa4"),
"id" : "04gl55gs0ecj22q61tu3s9l475",
"data" : "__flash|a:0:{}__id|s:24:\"5a65db240a64100202b7ca65\";"
}

refresh site page by F5

db.BackendSessions.find().pretty();
{
"_id" : ObjectId("5d79f9882893100f3029bfa4"),
"id" : "ilcs8pkjetisbie47p0h524adb",
"data" : "__flash|a:0:{}__id|s:24:\"5a65db240a64100202b7ca65\";"
}

...

webspec2012 on 12 Sep 2019

Does PHP write it into MongoDB at all?

samdark on 12 Sep 2019

Снимок экрана от 2019-09-12 12-17-06