Fix problem with admin save preference

[koreus]

Context : My admin preferences (modules & main) was not always saved.

htdocs/modules/system/themes/ComposerInfo.php

I checked and found an error 404 in the browser network tab. It was from the file : htdocs/modules/system/themes/ComposerInfo.php . I comment the line but it didn't resolve the problem. But I think it's better commented.

htdocs/class/xoopssecurity.php

I found that an invalid token was aborting the save with a redirection.
The token was not saved in the session (xoops_session table) but was set correctly in $_SESSION
So I forced the updating of the session in database with add session_write_close();

htdocs/kernel/session.php

I had an SQL duplicate index error with an INSERT comment in xoops_session
The fault was this test if (!$this->db->getAffectedRows()) after and UPDATE in the public function write($sessionId, $data)

If a row exist and is not updated (all same values), getAffectedRows return 0 and the code will try to INSERT, which cause an error (duplicate index)

[mambax7]

Seems to be OK. Thank you!
How about adding the change to prevent direct access?

[mambax7]

Can you add some tests, so we can make sure that it works and doesn't break something?

[koreus]

Can you add some tests, so we can make sure that it works and doesn't break something?

How I do that ? Do you have an example ?

[mambax7]

@koreus can you please check if the #1525 is still addressing your original problem?

Thanks!