shibboleth-dev - RE: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong")
Subject: Shibboleth Developers
List archive
- From: "Cantor, Scott E." <>
- To: "" <>
- Subject: RE: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong")
- Date: Fri, 17 Dec 2010 18:32:23 +0000
- Accept-language: en-US
> I'm not sure what definition is being used for 3rd party cookies, but
> cookies
> need to be read through an iframe. They are never written through an
> iframe. I'm curious though, what issues are seen with this?
It's a cookie associated with a domain other than the one from which the
original page came. I'm pretty sure that's the only definition.
AFAIK, reading cookies through an IFRAME is not allowed across domains when
third party cookies are disabled.
People often fool themselves into thinking this works, because many browsers
treat domains with a common tail as a special case, and allow reading them
even when they're disabled. Using completely separate domains (which I think
you'll agree is the entire basis of your proposal) results in different
behavior.
-- Scott
- [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Lukas Hämmerle, 12/16/2010
- RE: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Peter Williams, 12/16/2010
- Re: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Peter Schober, 12/16/2010
- Re: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Lukas Hämmerle, 12/17/2010
- RE: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Peter Williams, 12/17/2010
- RE: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Scott Cantor, 12/17/2010
- Re: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Eric Fazendin, 12/17/2010
- RE: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Cantor, Scott E., 12/17/2010
- RE: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Peter Williams, 12/17/2010
- Re: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Paul Hethmon, 12/17/2010
- RE: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Cantor, Scott E., 12/17/2010
- RE: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Cantor, Scott E., 12/17/2010
- Re: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Eric Fazendin, 12/17/2010
- Re: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Lukas Hämmerle, 12/17/2010
- RE: [Shib-Dev] New IETF draft for IdP Discovery ("PingPong"), Cantor, Scott E., 12/16/2010
Archive powered by MHonArc 2.6.16.