Cannot create new ticket on trac

Mon, 08 Jan 2007 14:17:15 -0800 


While logged in as guest/guest I could create ticket on pylons trac. I
was getting:
            Trac detected an internal error: KeyError: 'description'

Anyways this is what I wanted to report (about authkit):
____________________________________________________

The auth_tkt function logout_user_cookie should use the domain passed
along as authkit.cookie.params in the config file, and the following
portion of code should be removed:

   (

       'Set-Cookie', '%s=""; Path=%s; Domain=%s' % (

           self.cookie_name, path, cur_domain

       )

   ), (

       'Set-Cookie', '%s=""; Path=%s; Domain=%s' % (

           self.cookie_name, path, wild_domain,

       )

   ),

The reason:
1) If I don't set domain, at logout the auth_tkt cookie gets reset (to
empty string) but another auth_tkt is created (also set to empty
string). Due to the extra empty string auth_tkt hanging around,
subsequent logins don't see REMOTE_USER being set so the app thinks
user is not logged in.
2) If I set the domain, it's worse. The auth_tkt that was set at login
does not get reset, but 2 extra empty string auth_tkt cookies are
created. An again subsequent logings don't see REMOTE_USER.

See below for details.

1) Not setting domain: after signin this happens:
   Set-Cookie:
auth_tkt=43e3c1d0eb2183095447b547505b157445a2b9c8admin!; Path=/;

which results in this cookie:
   Cookie: auth_tkt=43e3c1d0eb2183095447b547505b157445a2b9c8admin!

after logout this happens:
   Set-Cookie: auth_tkt=""; Path=/ Set-Cookie: auth_tkt=""; Path=/;
                     Domain=www.servername.com Set-Cookie:
auth_tkt=""; Path=/;
                     Domain=.www.servername.com

which results in this cookie:
   Cookie: auth_tkt=""; auth_tkt=""

1) Setting domain to .servername.com : after signin this happens:
   Set-Cookie:
auth_tkt=f5c27e01d68e0d8395c735521892f6c345a2b566admin!;
       Domain=.servername.com; Path=/;

which results in this cookie:
   Cookie: auth_tkt=f5c27e01d68e0d8395c735521892f6c345a2b566admin!

after logout this happens:
   Set-Cookie: auth_tkt=""; Path=/ Set-Cookie: auth_tkt=""; Path=/;
                     Domain=www.servername.com Set-Cookie:
auth_tkt=""; Path=/;
                     Domain=.www.servername.com

which results in this cookie:
   Cookie: auth_tkt=f5c27e01d68e0d8395c735521892f6c345a2b566admin!;
auth_tkt=""; auth_tkt="" 


--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups 
"pylons-discuss" group.
To post to this group, send email to [email protected]
To unsubscribe from this group, send email to [EMAIL PROTECTED]
For more options, visit this group at 
http://groups.google.com/group/pylons-discuss?hl=en
-~----------~----~----~----~------~----~------~--~---

Reply via email to