Friday, February 4, 2011

Re: IE, CSRF and admin login

On Fri, Feb 4, 2011 at 3:14 PM, MikeKJ <mike.jones@paston.co.uk> wrote:
>
>
> In case anyone else hits this little nasty....
>
> IE doesn't know what to do with underscored sub domains as far as cookies
> and therefore csrf_token
> so dont do as I did and create a subdomain site for development using an
> underscored name and end up looking for a non existant needle....... thank
> you once again IE :-/

TBH, you can't really blame IE, as the PEBKAC - '_' is not a valid
character in a domain name or sub domain. IE is perfectly right to
discard cookies with invalid domains.

Cheers

Tom

--
You received this message because you are subscribed to the Google Groups "Django users" group.
To post to this group, send email to django-users@googlegroups.com.
To unsubscribe from this group, send email to django-users+unsubscribe@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/django-users?hl=en.

No comments:

Post a Comment