[IE10] session information lost after redirection in frame
1,401 views
Skip to first unread message
Maxim Sokhatsky
Nov 8, 2012, 4:23:31 PM11/8/12
to nitro...@googlegroups.com
I've found that session information, in particular wf:user() gets lost in facebook frame using IE10.
22:17:14.594 [info] login:408 wf:user() == "maxim"
22:17:14.595 [info] login:411 REDIRECT
22:17:15.545 [info] dashboard:20 DASH
22:17:15.545 [info] dashboard:29 wf:user() == undefined
22:17:14.595 [info] login:411 REDIRECT
22:17:15.545 [info] dashboard:20 DASH
22:17:15.545 [info] dashboard:29 wf:user() == undefined
after redirection with wf:redirect_from_login
?INFO("wf:user() == ~p",[wf:user()]),
?INFO("REDIRECT"),
wf:redirect_from_login(?_U("/dashboard")).
wf:redirect_from_login(?_U("/dashboard")).
This is found only in facebook context. In direct connection to the site everything is ok.
Please help or advice :)
Jesse Gumm
Nov 8, 2012, 7:03:05 PM11/8/12
to nitrogenweb
Are you certain it's facebook-specific, and not just frame-specific?
IE has a habit of rejecting cookies for third-party frames, and since
cookies are the basis for Nitrogen Sessions, that would lead to this
problem.
There's a fix for this, which involves taking advantage of IE's P3P header.
wf:header('P3P',"CP=\"CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE\"")
Honestly, I don't know all the details about this, but I just copied
and pasted that line (and reformatted to be nitrogen-specific) from
here: http://www.softwareprojects.com/resources/programming/t-how-to-get-internet-explorer-to-use-cookies-inside-1612.html
I haven't tested this, but that link should point you in the right direction.
-Jesse
> --
> You received this message because you are subscribed to the Google Groups
> "Nitrogen Project / The Nitrogen Web Framework for Erlang" group.
> To view this discussion on the web visit
> https://groups.google.com/d/msg/nitrogenweb/-/_BfD6Jxk2msJ.
> To post to this group, send email to nitro...@googlegroups.com.
> To unsubscribe from this group, send email to
> nitrogenweb...@googlegroups.com.
> For more options, visit this group at
> http://groups.google.com/group/nitrogenweb?hl=en.
--
Jesse Gumm
Owner, Sigma Star Systems
414.940.4866 || sigma-star.com || @jessegumm
IE has a habit of rejecting cookies for third-party frames, and since
cookies are the basis for Nitrogen Sessions, that would lead to this
problem.
There's a fix for this, which involves taking advantage of IE's P3P header.
wf:header('P3P',"CP=\"CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE\"")
Honestly, I don't know all the details about this, but I just copied
and pasted that line (and reformatted to be nitrogen-specific) from
here: http://www.softwareprojects.com/resources/programming/t-how-to-get-internet-explorer-to-use-cookies-inside-1612.html
I haven't tested this, but that link should point you in the right direction.
-Jesse
> You received this message because you are subscribed to the Google Groups
> "Nitrogen Project / The Nitrogen Web Framework for Erlang" group.
> To view this discussion on the web visit
> https://groups.google.com/d/msg/nitrogenweb/-/_BfD6Jxk2msJ.
> To post to this group, send email to nitro...@googlegroups.com.
> To unsubscribe from this group, send email to
> nitrogenweb...@googlegroups.com.
> For more options, visit this group at
> http://groups.google.com/group/nitrogenweb?hl=en.
--
Jesse Gumm
Owner, Sigma Star Systems
414.940.4866 || sigma-star.com || @jessegumm
Maxim Sokhatsky
Nov 8, 2012, 7:36:44 PM11/8/12
to nitro...@googlegroups.com
No P3P is a DNT headers. However I found the problem in
Settings -> Privacy Settings -> Advanced -> Check Override Automatic Cookies Settings (Allow Third Parties)
Thank you, your post really directed me to a findings :)
Reply all
Reply to author
Forward
0 new messages