Re: [OT] Re: Bad Cookie / Internet Option / Internet Explorer

This WebDNA talk-list message is from

2004


It keeps the original formatting.
numero = 60511
interpreted = N
texte = I think I know where the problem is coming from, if you read the following it says that "Microsoft Internet Explorer 6 will evaluate this policy's compact policy whenever it is used with a cookie", it also says " ...this compact policy is considered /satisfactory/ according to the rules defined by Internet Explorer 6. IE6 will accept cookies accompanied by this policy" ===================== Policy Evaluation Microsoft Internet Explorer 6 will evaluate this policy's compact policy whenever it is used with a cookie. The actions IE will take depend on what privacy level the user has selected in their browser (Low, Medium, Medium High, or High; the default is Medium. In addition, IE will examine whether the cookie's policy is considered satisfactory or unsatisfactory, whether the cookie is a session cookie or a persistent cookie, and whether the cookie is used in a first-party or third-party context. This section will attempt to evaluate this policy's compact policy against Microsoft's stated behavior for IE6. *Note:* this evaluation is currently experimental and should not be considered a substitute for testing with a real Web browser. *Satisfactory policy*: this compact policy is considered /satisfactory/ according to the rules defined by Internet Explorer 6. IE6 will accept cookies accompanied by this policy under the High, Medium High, Medium, Low, and Accept All Cookies settings. ===================== If I understand this correctly I am not sending the compact policy at the same time as the cookies are getting sent and thus it is not proceeding to be validated by IE6. Here is a copy of the mime header returned from a cgi script on someones website for the url http://www.hanon-shop.com/checkout/yourcart :- HTTP/1.0 302 Moved Temporarily Location: http://www.hanon-shop.com/checkout/yourcart///set/ Set-Cookie: hanon_session=11032022813758047; path=/; domain=www.hanon-shop.com Server: Apache/1.3.27 (Unix) (Red-Hat/Linux) mod_ssl/2.8.12 OpenSSL/0.9.6b DAV/1.0.3 P Connection: Close MIME-Version: 1.0 Date: Thu Dec 16 13:04:41 2004 GMT Last-Modified: Thu Dec 16 13:04:41 2004 GMT Expires: Thu Dec 16 13:04:41 2004 GMT Content-Length: 1 ==================== Here is the returned header (According to Firefox) from a successful item being added to cart:- Response Headers - http://www.hanon-shop.com/checkout/yourcart/ Content-Type: text/html Server: Apache/1.3.27 (Unix) (Red-Hat/Linux) mod_ssl/2.8.12 OpenSSL/0.9.6b DAV/1.0.3 P Connection: Close MIME-Version: 1.0 Date: Thu Dec 16 13:25:13 2004 GMT Last-Modified: Thu Dec 16 13:25:13 2004 GMT Expires: Thu Dec 16 13:25:13 2004 GMT Content-Length: 23825 ===================== Am I on the right track and if so I am a little lost as to how to do this... TIA anyone with words of wisdom... Alan ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Associated Messages, from the most recent to the oldest:

    
I think I know where the problem is coming from, if you read the following it says that "Microsoft Internet Explorer 6 will evaluate this policy's compact policy whenever it is used with a cookie", it also says " ...this compact policy is considered /satisfactory/ according to the rules defined by Internet Explorer 6. IE6 will accept cookies accompanied by this policy" ===================== Policy Evaluation Microsoft Internet Explorer 6 will evaluate this policy's compact policy whenever it is used with a cookie. The actions IE will take depend on what privacy level the user has selected in their browser (Low, Medium, Medium High, or High; the default is Medium. In addition, IE will examine whether the cookie's policy is considered satisfactory or unsatisfactory, whether the cookie is a session cookie or a persistent cookie, and whether the cookie is used in a first-party or third-party context. This section will attempt to evaluate this policy's compact policy against Microsoft's stated behavior for IE6. *Note:* this evaluation is currently experimental and should not be considered a substitute for testing with a real Web browser. *Satisfactory policy*: this compact policy is considered /satisfactory/ according to the rules defined by Internet Explorer 6. IE6 will accept cookies accompanied by this policy under the High, Medium High, Medium, Low, and Accept All Cookies settings. ===================== If I understand this correctly I am not sending the compact policy at the same time as the cookies are getting sent and thus it is not proceeding to be validated by IE6. Here is a copy of the mime header returned from a cgi script on someones website for the url http://www.hanon-shop.com/checkout/yourcart :- HTTP/1.0 302 Moved Temporarily Location: http://www.hanon-shop.com/checkout/yourcart///set/ Set-Cookie: hanon_session=11032022813758047; path=/; domain=www.hanon-shop.com Server: Apache/1.3.27 (Unix) (Red-Hat/Linux) mod_ssl/2.8.12 OpenSSL/0.9.6b DAV/1.0.3 P Connection: Close MIME-Version: 1.0 Date: Thu Dec 16 13:04:41 2004 GMT Last-Modified: Thu Dec 16 13:04:41 2004 GMT Expires: Thu Dec 16 13:04:41 2004 GMT Content-Length: 1 ==================== Here is the returned header (According to Firefox) from a successful item being added to cart:- Response Headers - http://www.hanon-shop.com/checkout/yourcart/ Content-Type: text/html Server: Apache/1.3.27 (Unix) (Red-Hat/Linux) mod_ssl/2.8.12 OpenSSL/0.9.6b DAV/1.0.3 P Connection: Close MIME-Version: 1.0 Date: Thu Dec 16 13:25:13 2004 GMT Last-Modified: Thu Dec 16 13:25:13 2004 GMT Expires: Thu Dec 16 13:25:13 2004 GMT Content-Length: 23825 ===================== Am I on the right track and if so I am a little lost as to how to do this... TIA anyone with words of wisdom... Alan ------------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: To switch to the DIGEST mode, E-mail to Web Archive of this list is at: http://webdna.smithmicro.com/ Alan White

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

$Quit, $CloseDatabase corrections (1997) SSL with IIS 4.0 (1998) Navigator 4.0 & tables (1997) docs for WebCatalog2 (1997) NetForms for mail, sorry (1998) New Command prefs ... (1997) Error handling for accountNum (1997) Doing VALIDCARD right? (1998) WebCat2b13MacPlugIn - [include] (1997) Webcatalog server support (1997) Mozilla/4. and Browser Info.txt (1997) TCPSend GET vs POST (2007) Help name our technology! (1997) Can't use old cart file (was One more try) (1997) [ot] ascii values for lf and cr (2001) Am I going senile? (Price recalc based on quantity) (1997) What am I missing (1997) WebCat2 - Getting to the browser's username/password data (1997) WebCat2b12 CGI Mac - [shownext] problem (1997) How To question on setting up downloads (1997)