mirrors/git-annex
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages 1 Wiki Activity Actions

Added a comment

Browse source
This commit is contained in:
andrew 2019-01-01 18:47:59 +00:00 committed by admin
parent 508396879b
commit 87af69903d
1 changed files with 14 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
doc/bugs/impossible_to_login_to_the_website_at_times/comment_5_c76fddc3aab4d3580c79f105c97d6998._comment Normal file
View file

@ -0,0 +1,14 @@
[[!comment format=mdwn
username="andrew"
avatar="http://cdn.libravatar.org/avatar/acc0ece1eedf07dd9631e7d7d343c435"
subject="comment 5"
date="2019-01-01T18:47:58Z"
content="""
OK. I think I have figured out the issue (at least in my case). I guess that I had logged into https://git-annex.branchable.com, then tried to visit the non-secure URL http://git-annex.branchable.com this is when I got the error.
Taking a look at the cookie I send when visiting https://git-annex.branchable.com I see that it has the secure flag set. Which I think means that my browser will refuse to send this cookie when I visit the http://git-annex.branchable.com and will refuse to receive another cookie (since its the same domain).
If I clear my cookies and login via http://git-annex.branchable.com, the cookie does not have the secure flag set.
This means that ikiwiki is serving cookies with different flags for http vs https. Probably related to this feature? <https://ikiwiki.info/todo/use_secure_cookies_for_ssl_logins/>. Anyhow it seems this isn't quite working as desired. I think it is possible to serve two different cookies (one for http and one for https) but ikiwiki does not appear to be doing that.
"""]]