Fix for: zero or negative values on session lifetime.

[maxvalentini77]

Zero or negative values on session lifetime

Session lifetime is an integer value and should be setted to a positive value greater than zero.

• Negative value cause that the session to be always "expired".
• Zero behavior is equals to the default value of 15 minute, this behavior is not explict and can be obtained setting 15 minutes of lifetime, so i remove zero from the valid range.

[zero-24]

How to test

• try to insert and save a value of zero as session time
• make sure no issues are reported
• apply the patch
• try zero again
• repeat the test with 1 and 2 as values (both should work)

Thanks @maxvalentini77

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/joomla-cms/6954.}

[Fedik]

I still able to save negative value:

[Fedik]

I think problem that there no backend validation for this input,
also filter="integer" allow negative value (that is valid),
min="1" have not much effect at least in my Chrome browser 😄

same problem with "Cache Time" in same configuration form

[izharaazmi]

@maxvalentini77 I suggest to add filter="uint" as well to the field, though I don't see it as necessary.

[maxvalentini77]

@Fedik You are right, I'm working on a server side validation.
@izharaazmi Thanks for the tip!

[maxvalentini77]

Added number validator to check min/max range for number fields.
Added the validator to cachetime and session lifetime, both setted with min of 1.

[zero-24]

RTC based on testing by @ChrisBreaks and @jonnyefftek on #jab15 #makeithappen

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/joomla-cms/6954.}

[watchfulli-dev]

@test test resutls are: without patch applied, there's no error displayed and you can enter 0 inside "Session Lifetime " field. After applying the patch if you try to enter 0 as a value inside "Session Lifetime " field, you get this error: "Invalid field: Session Lifetime"

---

_{This comment was created with the J!Tracker Application at issues.joomla.org/joomla-cms/6954.}

[Bakual]

Merged with b649299 into 3.5-dev.

Thanks!

Is there a list of available JFormRules somewhere? If so that would need updated as we introduce a new one here.

[peterlose]

@Bakual Should the doc block say @since xx.x?

[maxvalentini77]

I wrote xx.x in the attribute because i didn't know in which version this class will be introduced. Now should contain 3.5.0, right?

[zero-24]

Correct @maxvalentini77 can you just send a quick PR that fixes that?

[maxvalentini77]

@zero-24 I create a new PR #7109 it's ok?

[Bakual]

Awww. I usually don't look at the doc blocks close enough...

[zero-24]

@zero-24 I create a new PR #7109 it's ok?

👍 Thomas allready merged it. Thanks