Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Already on GitHub? Sign in to your account

Session cookie domain mismatch #60

omarkarim opened this Issue Oct 14, 2009 · 2 comments


None yet
3 participants


I have a rack filter that dynamically sets the session cookie domain using env['rack.session.options'][:domain]. This seems to correctly update the domain for rails session cookies but not for authlogic cookies.

Is there a preferred method for setting dynamic (rather than static in environment.rb) cookie domains that would work with authlogic as well?



ariejan commented Nov 2, 2009

We have the same issue on an app that supports cross-subdomain logins. We see that the AuthLogic cookie always gets set to www.domain.com instead of the expected .domain.com (note the prefixing dot).

We can login fine, but logging out is not possible at all.


jaredbeck commented Dec 25, 2016

Closing due to inactivity. If this is still an issue in the latest version of authlogic (currenly 3.5) please let us know and we'll be happy to reopen.

@jaredbeck jaredbeck closed this Dec 25, 2016

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment