#1114 Received cookie destroys existing IE cookie

closed
5
2012-09-23
2007-07-20
No

Taken from forum post at http://www.rssbandit.org/forum/topic.asp?whichpage=1&TOPIC_ID=2080.

"One of my favorite forums is Gathering of tweakers.net (http://gathering.tweakers.net/) using React to generate her output to the requester in example a browser.
Every page in the forum, wether it is a topic or a subforumpage is shown as normal html, however React can generate a page as RSS by changing the word "forum" into "rss.php" like this:

http://gathering.tweakers.net/forum/list_activetopics
into
http://gathering.tweakers.net/rss.php/list_activetopics

Off course I started filling RSS Bandit with feeds from several topics. However, it seems RSS Bandit does not handle the allways-logged-in cookie very well, everytime a feed refresh is requested, Bandit logs me out of tweakers.net.
I feel that the problem lies with RSS Bandit as IE7 does not log me out when visiting an RSS Feed like http://gathering.tweakers.net/rss.php/list_activetopics.
Tweakers.net administrators are clouless about this too."

I could repro that here (IE 7 installed, XP SP2) with v1.5.0.15.

The routine we make the received cookies persisted to IE seems to cause that:

HttpCookieManager::GetCookies(HttpWebResponse response) {
if (response.Headers["Set-Cookie"] != null) {
InternetSetCookie(response.ResponseUri.AbsoluteUri, null, response.Headers["Set-Cookie"]);
}
}

If I jump over in Debugger, the embedded IE browsing behvior is correct (keep me logged in with the cookie), while if we exec. the code - we get knocked out (cookie destroyed?).

Discussion

  • Torsten Rendelmann

    Logged In: YES
    user_id=714452
    Originator: YES

    I'm not the cookie content expert, but attached the cookie IE cache file content for review.
    File Added: tweakers.before.txt

     
  • Torsten Rendelmann

    Logged In: YES
    user_id=714452
    Originator: YES

    File Added: tweakers.after.txt

     
  • Dare Obasanjo

    Dare Obasanjo - 2007-07-29

    Logged In: YES
    user_id=24549
    Originator: NO

    I've commented out the code in GetCookies and we'll see if this harms any other scenarios.

     

Log in to post a comment.

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:





No, thanks