[Catalyst] Session problems with IE and cookies

Octavian Rasnita orasnita at gmail.com
Wed Feb 28 13:31:39 GMT 2007 

I have created a site using Catalyst, and I access it with IE, but I can 
login with no issues.
However, 2 customers told me that they can login on the site from one 
location, but they cannot do it from their work place.
I don't know, but it might be the same bug, since after the login, the 
program is making an external redirection, and the cookies are used...

Anyway, if somebody will find what's the problem, please write on the list.

Octavian

----- Original Message ----- 
From: "Marc Logghe" <Marc.Logghe at DEVGEN.com>
To: "Thomas Hartman" <thomashartman1 at googlemail.com>
Cc: "The elegant MVC web framework" <catalyst at lists.rawmode.org>
Sent: Wednesday, February 28, 2007 3:02 PM
Subject: RE: [Catalyst] Session problems with IE and cookies




> -----Original Message-----
> From: Thomas Hartman [mailto:thomashartman1 at googlemail.com]
> Sent: Wednesday, February 28, 2007 12:09 PM
> To: The elegant MVC web framework
> Subject: Re: [Catalyst] Session problems with IE and cookies
>
> Don't really understand the root of the problem, but I asked
> about this on #Catalyst and was told of a workaround, and
> saved it to my .bashrc hints.
>
> If I recall correctly, the consensus is that this is an IE6 bug.


Not sure about that. I have exactly the same problem as Dylan. It is not
specific for IE, Opera shows the very same problem.
The user has to manually delete the cookie in order to login again. Not
what you can call user friendly ;-)
It seems that only Firefox is expiring the session cookie in the correct
way. Also, why is it only us 2 having this problem ? Is everybody else
using Firefox only ?
Cheers,
Marc




>
> hartman at ds0207:~> thartman_catalyst_IE6_response_redirect_prob_hint
> try myapp_server.pl with -f -k flags
> hartman at ds0207:~>
>
> hope this helps, thomas.
>
> On 2/27/07, Dylan Vanderhoof <DylanV at semaphore.com> wrote:
> > I'm seeing an issue where if IE is holding a cookie when a session
> > expires (expires set to 7200, cookie_expires set to 0), the
> user can't
> > login.  Login authenticates successfully, but redirects back to the
> > login page.  (Session is expired and not being deleted correctly)
> >
> > This does not happen with Firefox, which appears to actually delete
> > the session correctly.
> >
> > I noticed the same behavior if the session data (Store::DBIC) was
> > deleted from the DB before the session expires.
> >
> > Any ideas what might be causing this and how to fix it?
> >
> > Thanks,
> > Dylan
> >
> > Debug output: (Repeats the last 2 requests until the
> browser is closed
> > with a session cookie or the cookie file is deleted with a
> cookie with
> > an expiration)
> >
> > [debug] "GET" request for "/" from "209.221.173.66"
> > [debug] Found sessionid
> "cb30ab14db722929594b6ec6e4f35bc28895284f" in
> > cookie [debug] Deleting session(session expired) [debug]
> Redirecting
> > to "https://myapp/signin"
> > [info] Request took 0.084344s (11.856/s)
> >
> .----------------------------------------------------------------+----
> > --
> > -----.
> > | Action
>      | Time
> > |
> >
> +----------------------------------------------------------------+----
> > +----------------------------------------------------------------+--
> > -----+
> > | /auto                                                          |
> > 0.057025s |
> > | /end                                                           |
> > 0.001156s |
> >
> '----------------------------------------------------------------+----
> > --
> > -----'
> >
> > [info] *** Request 1 (0.001/s) [3435] [Tue Feb 27 21:50:43
> 2007] ***
> > [debug] "GET" request for "signin" from "209.221.173.66"
> > [debug] Path is "signin"
> > [debug] Found sessionid
> "cb30ab14db722929594b6ec6e4f35bc28895284f" in
> > cookie [debug] Deleting session(session expired) [debug] Rendering
> > template "login_welcome.tt"
> > [info] Request took 0.178703s (5.596/s)
> >
> .----------------------------------------------------------------+----
> > --
> > -----.
> > | Action
>      | Time
> > |
> >
> +----------------------------------------------------------------+----
> > +----------------------------------------------------------------+--
> > -----+
> > | /auto                                                          |
> > 0.000492s |
> > | /auth/signin                                                   |
> > 0.083319s |
> > | /end                                                           |
> > 0.066447s |
> > |  -> NetResponse::View::TT->process                             |
> > 0.062633s |
> >
> '----------------------------------------------------------------+----
> > --
> > -----'
> >
> > [info] *** Request 2 (0.002/s) [3435] [Tue Feb 27 13:50:50
> 2007] ***
> > [debug] Body Parameters are:
> >
> .-------------------------------------+-------------------------------
> > --
> > -----.
> > | Parameter                           | Value
> > |
> >
> +-------------------------------------+-------------------------------
> > +-------------------------------------+--
> > -----+
> > | email                               | username                 |
> > | password                            | password
>            |
> >
> '-------------------------------------+-------------------------------
> > --
> > -----'
> > [debug] "POST" request for "signin" from "209.221.173.66"
> > [debug] Path is "signin"
> > [debug] Found sessionid
> "cb30ab14db722929594b6ec6e4f35bc28895284f" in
> > cookie [debug] Deleting session(session expired) [debug] Found
> > sessionid "cb30ab14db722929594b6ec6e4f35bc28895284f" in
> cookie [debug]
> > Deleting session(session expired) [debug] Found sessionid
> > "cb30ab14db722929594b6ec6e4f35bc28895284f" in cookie [debug]
> > Successfully authenticated user 'dylanv at semaphore.com'.
> > [debug] Redirecting to "https://myapp/signin"
> >
> > _______________________________________________
> > List: Catalyst at lists.rawmode.org
> > Listinfo: http://lists.rawmode.org/mailman/listinfo/catalyst
> > Searchable archive:
> > http://www.mail-archive.com/catalyst@lists.rawmode.org/
> > Dev site: http://dev.catalyst.perl.org/
> >
>
> _______________________________________________
> List: Catalyst at lists.rawmode.org
> Listinfo: http://lists.rawmode.org/mailman/listinfo/catalyst
> Searchable archive:
> http://www.mail-archive.com/catalyst@lists.rawmode.org/
> Dev site: http://dev.catalyst.perl.org/
>
>

_______________________________________________
List: Catalyst at lists.rawmode.org
Listinfo: http://lists.rawmode.org/mailman/listinfo/catalyst
Searchable archive: http://www.mail-archive.com/catalyst@lists.rawmode.org/
Dev site: http://dev.catalyst.perl.org/

More information about the Catalyst mailing list