[Seaside] Fallback to support cookie-less browsers
Avi Bryant
avi.bryant at gmail.com
Thu Dec 21 23:27:18 UTC 2006
Interesting... doesn't that rely on the first request to the session
having some cookies, though (that aren't being set by Seaside)?
Admittedly there always does seem to be cookie cruft being passed back
and forth but I'm not sure it's the best idea to rely on that. Or am
I missing something?
Avi
On 12/21/06, Boris Popov <boris at deepcovelabs.com> wrote:
> You know that problem that you can't enable cookies without risking
> throwing your clients (and server) into an endless loop of redirects
> when said clients have their cookies disabled/disallowed? Here's a first
> stab at addressing the issue, details logs below. It's a VisualWorks
> fileout, but it's a really tiny set of 3 changes, so I was hoping for a
> peer review of some sorts to see if that even makes sense ;)
>
> Cheers!
>
> ----- Cookies Disabled Without Fixes -----
>
> curl -L http://localhost:7777/online
> curl: (47) Maximum (50) redirects followed
>
>
> ----- Cookies Disabled With Fixes -----
>
> curl -Li http://localhost:7777/online
>
> HTTP/1.1 302 Found
> Location: http://localhost:7777/online?_k=BPlZDLES
> Set-Cookie: online=SHdxyvpHgSYIuAAN
>
> HTTP/1.1 302 Found
> Location: http://localhost:7777/online?_s=ISLgZslhOnSNpxzr&_k=OqbbsbFi&3
>
> HTTP/1.1 302 Found
> Location: http://localhost:7777/online?_s=ISLgZslhOnSNpxzr&_k=xXlOiQYU
>
> HTTP/1.1 200 OK
> Content-Length: 4582
>
>
> ----- Cookies Enabled With Fixes -----
> C:\>curl -c cookie.jar -Li http://localhost:7777/online
> HTTP/1.1 302 Found
> Location: http://localhost:7777/online?_k=zhwNopRt
> Set-Cookie: online=NotjJZEehYAPhKxY
>
> HTTP/1.1 302 Found
> Location: http://localhost:7777/online?_k=CgSFaeCy&3
>
> HTTP/1.1 302 Found
> Location: http://localhost:7777/online?_k=WHYjcAeu
> Set-Cookie: online=NotjJZEehYAPhKxY
>
> HTTP/1.1 200 OK
> Set-Cookie: online=NotjJZEehYAPhKxY
> Content-Length: 4279
>
> -Boris
>
> --
> +1.604.689.0322
> DeepCove Labs Ltd.
> 4th floor 595 Howe Street
> Vancouver, Canada V6C 2T5
>
> boris at deepcovelabs.com
>
> CONFIDENTIALITY NOTICE
>
> This email is intended only for the persons named in the message
> header. Unless otherwise indicated, it contains information that is
> private and confidential. If you have received it in error, please
> notify the sender and delete the entire message including any
> attachments.
>
> Thank you.
>
>
>
> _______________________________________________
> Seaside mailing list
> Seaside at lists.squeakfoundation.org
> http://lists.squeakfoundation.org/cgi-bin/mailman/listinfo/seaside
>
>
>
>
More information about the Seaside
mailing list