[Catalyst] Session problems with IE and cookies

Dylan Vanderhoof DylanV at semaphore.com
Tue Feb 27 22:08:08 GMT 2007 

I'm seeing an issue where if IE is holding a cookie when a session
expires (expires set to 7200, cookie_expires set to 0), the user can't
login.  Login authenticates successfully, but redirects back to the
login page.  (Session is expired and not being deleted correctly)

This does not happen with Firefox, which appears to actually delete the
session correctly.

I noticed the same behavior if the session data (Store::DBIC) was
deleted from the DB before the session expires.  

Any ideas what might be causing this and how to fix it?

Thanks,
Dylan

Debug output: (Repeats the last 2 requests until the browser is closed
with a session cookie or the cookie file is deleted with a cookie with
an expiration)

[debug] "GET" request for "/" from "209.221.173.66"
[debug] Found sessionid "cb30ab14db722929594b6ec6e4f35bc28895284f" in
cookie
[debug] Deleting session(session expired)
[debug] Redirecting to "https://myapp/signin"
[info] Request took 0.084344s (11.856/s)
.----------------------------------------------------------------+------
-----.
| Action                                                         | Time
|
+----------------------------------------------------------------+------
-----+
| /auto                                                          |
0.057025s |
| /end                                                           |
0.001156s |
'----------------------------------------------------------------+------
-----'

[info] *** Request 1 (0.001/s) [3435] [Tue Feb 27 21:50:43 2007] ***
[debug] "GET" request for "signin" from "209.221.173.66"
[debug] Path is "signin"
[debug] Found sessionid "cb30ab14db722929594b6ec6e4f35bc28895284f" in
cookie
[debug] Deleting session(session expired)
[debug] Rendering template "login_welcome.tt"
[info] Request took 0.178703s (5.596/s)
.----------------------------------------------------------------+------
-----.
| Action                                                         | Time
|
+----------------------------------------------------------------+------
-----+
| /auto                                                          |
0.000492s |
| /auth/signin                                                   |
0.083319s |
| /end                                                           |
0.066447s |
|  -> NetResponse::View::TT->process                             |
0.062633s |
'----------------------------------------------------------------+------
-----'

[info] *** Request 2 (0.002/s) [3435] [Tue Feb 27 13:50:50 2007] ***
[debug] Body Parameters are:
.-------------------------------------+---------------------------------
-----.
| Parameter                           | Value
|
+-------------------------------------+---------------------------------
-----+
| email                               | username                 |
| password                            | password                       |
'-------------------------------------+---------------------------------
-----'
[debug] "POST" request for "signin" from "209.221.173.66"
[debug] Path is "signin"
[debug] Found sessionid "cb30ab14db722929594b6ec6e4f35bc28895284f" in
cookie
[debug] Deleting session(session expired)
[debug] Found sessionid "cb30ab14db722929594b6ec6e4f35bc28895284f" in
cookie
[debug] Deleting session(session expired)
[debug] Found sessionid "cb30ab14db722929594b6ec6e4f35bc28895284f" in
cookie
[debug] Successfully authenticated user 'dylanv at semaphore.com'.
[debug] Redirecting to "https://myapp/signin"

More information about the Catalyst mailing list