Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Already on GitHub? Sign in to your account

Session cookie domain mismatch #60

Closed
omarkarim opened this Issue Oct 14, 2009 · 2 comments

Comments

Projects
None yet
3 participants

Hello,

I have a rack filter that dynamically sets the session cookie domain using env['rack.session.options'][:domain]. This seems to correctly update the domain for rails session cookies but not for authlogic cookies.

Is there a preferred method for setting dynamic (rather than static in environment.rb) cookie domains that would work with authlogic as well?

Thanks!
Omar

Contributor

ariejan commented Nov 2, 2009

We have the same issue on an app that supports cross-subdomain logins. We see that the AuthLogic cookie always gets set to www.domain.com instead of the expected .domain.com (note the prefixing dot).

We can login fine, but logging out is not possible at all.

Collaborator

jaredbeck commented Dec 25, 2016

Closing due to inactivity. If this is still an issue in the latest version of authlogic (currenly 3.5) please let us know and we'll be happy to reopen.

@jaredbeck jaredbeck closed this Dec 25, 2016

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment