Shibboleth Developers

[Paul Hethmon <>]

Pretty sure it is not possible. I keep having partners try to frame my IdP
site and this makes it die a horrible death.


On 12/7/09 1:14 PM, "Scott Cantor" 
<>
 wrote:

> Can somebody demonstrate a case in which Firefox, *without* accepting third
> party cookies, will handle setting or returning a session cookie via a frame
> or iframe if the source of the frame is a totally distinct domain from the
> outer frameset?



-----
Paul Hethmon
Chief Software Architect
Clareity Security, LLC
865.824.1350 - office
865.250.3517 - mobile
www.clareitysecurity.com
-----

God does not play dice with the universe; He plays an ineffable game of his
own devising, which might be compared, from the perspective of any of the
other players, to being involved in an obscure and complex version of poker
in a pitch dark room, with blank cards, for infinite stakes, with a dealer
who won't tell you the rules, and who smiles all the time.

 -- Terry Pratchett, Good Omens