According to section 4.2.2 of RFC 2109 (the Cookie spec) a domain
MUST begin with a period. If you are using Safari, you can explicitly
specify "localhost.local" and it will work. However, I've not found
any combination that works for Firefox.
The primary purpose of the cookie host is to specify a broader domain
for the cookie rather than the originating server. So specifying
localhost is not really necessary (that would be the default if you
access http://localhost:8080/).
I suppose I should rename identity.session.cookie.host to
identity.session.cookie.domain to be more clear.
On 4 Jan, 2006, at 3:31 am, Keir Mierle wrote:
I integrated the identity framework into my app, but it appears the
session cookie is never sent.
Here's what happens: I have a /save page which @requires
not_anonymous.
The user tries to visit /save, they are redirected to /login with
extra
parameters stored in the login form. If the user types in a valid l/p,
then the content is correctly saved and everything is good. Except
that
there is no identity cookie sent, so there is no lasting record of the
session. Oddly enough, there is a secret_token in my database
corresponding to the user who logged in; however it is not sent.
Note that I have duplicated the relevant fields from somodel.py and
specified the following in my dev.cfg:
identity.on=True
identity.failure_url="/login"
identity.soprovider.model="myproject.model"
identity.soprovider.model.user="User"
identity.soprovider.model.group="Role"
identity.soprovider.model.permission="Permission"
identity.soprovider.model.secret_token="SecretToken"
identity.session.cookie.host="localhost"
This is with SVN 441. Any help is appreciated.
Keir
--
Jeff Watkins
http://newburyportion.com/
'I know about people who talk about suffering for the common good.
It's never bloody them! When you hear a man shouting "Forward, brave
comrades!" you'll see he's the one behind the bloody big rock and the
one wearing the only really arrow-proof helmet!'
-- Rincewind gives a speech on politics. (Terry Pratchett,
Interesting Times)
