View Issue Details

This bug affects 1 person(s).
 2
IDProjectCategoryView StatusLast Update
17664Bug reportsSurvey takingpublic2021-10-18 09:30
Reporterduvemyster Assigned Togalads  
PrioritynoneSeverityminor 
Status acknowledgedResolutionopen 
Product Version5.x 
Summary17664: Session expiration message is not presented to users on file-upload
DescriptionWhen a respondent's session expires with a page with a file-upload questions still in their browser, and they click the "upload file" link:

* In Version 5.1.15+211011 there is no session expiration message visible (at least not in FF or Edge).
* In Version 3.27.19+210928, with some effort scrolling right and left in the small window a "401: Unauthorized" message can be seen, which is at least followed by "We are sorry but your session has expired." (and "You must be logged in to access this page." though that adds a little confusion to those who keep reading as they don't think they logged in.)
Steps To ReproduceSteps to reproduce
------------------------------
1. Check session lifetime max (e.g., session.gc_maxlifetime) or set it short on a dev server.
2. Open a survey to a group with a file-upload questions as a respondent, and leave the browser tab inactive longer than the session max.
3. Click on "Upload files" after the session has expired.

Expected result
-------------------------
In the case of persistent tokens, it would help if the main browser window was simply automatically refreshed, as that would get them back up and running with a new session!
If that is not an option, a human-friendly communication to users that they need to refresh their main browser window would help.
(In 3.x the "We are sorry but your session has expired." is helpful if one scrolls around to see it, though not all users make the connection with what they need to do next.)

Actual result
-----------------
* In Version 5.1.15+211011 there is no session expiration message visible (at least not in FF or Edge). Next, users attempt to click on the "x" to close the empty modal window to try again, but it is inactive.
* In Version 3.27.19+210928, with some effort scrolling right and left in the small window a "401: Unauthorized" message can be seen, followed by "We are sorry but your session has expired." and "You must be logged in to access this page."
TagsNo tags attached.
Bug heat2
Complete LimeSurvey version number (& build)5.1.15+211011 / 3.27.19+210928
I will donate to the project if issue is resolvedNo
BrowserEdge / FF
Database type & versionMariadb (MySQL)
Server OS (if known)linux
Webserver software & version (if known)apache 2
PHP Version7.4.13

Users monitoring this issue

User List There are no users monitoring this issue.

Activities

duvemyster

duvemyster

2021-10-16 20:07

reporter  

5.x Edge.PNG (8,367 bytes)   
5.x Edge.PNG (8,367 bytes)   
5.x ff.PNG (6,934 bytes)   
5.x ff.PNG (6,934 bytes)   
3.x Edge.PNG (24,636 bytes)   
3.x Edge.PNG (24,636 bytes)   
duvemyster

duvemyster

2021-10-16 20:15

reporter   ~66855

Correction in "Expected results" above. In the case of persistent tokens, it would not work in all cases if the main browser window was simply automatically refreshed, such as when separate pages for each group is involved. In that case such an approach would require their persistent token link being loaded again in the main window.

Issue History

Date Modified Username Field Change
2021-10-16 20:07 duvemyster New Issue
2021-10-16 20:07 duvemyster File Added: 5.x Edge.PNG
2021-10-16 20:07 duvemyster File Added: 5.x ff.PNG
2021-10-16 20:07 duvemyster File Added: 3.x Edge.PNG
2021-10-16 20:15 duvemyster Note Added: 66855
2021-10-16 20:15 duvemyster Bug heat 0 => 2
2021-10-18 09:30 galads Assigned To => galads
2021-10-18 09:30 galads Status new => acknowledged