xwing icon indicating copy to clipboard operation
xwing copied to clipboard

Published 20 hours ago verified publisher icon geordanr

Language Choice

Open yooden opened this issue 10 years ago • 8 comments

Please remember the language I pick for further sessions, using cookies and whatnot.

yooden avatar Oct 25 '14 21:10 yooden

It should already be doing this via session cookie. Can you describe the steps necessary to show that the browser is forgetting the session?

geordanr avatar Oct 25 '14 22:10 geordanr

Open http://geordanr.github.io/xwing/, change language, middle-click "Permalink". The new window will have the old language.

I use Iceweasel 31.2.0.

yooden avatar Oct 26 '14 10:10 yooden

Are you logged in via the OAuth providers when this happens?

Have you disabled third party cookies? The cookie is for yasb-backend.herokuapp.com. Does that cookie exist for you?

I'm not able to reproduce this on Firefox (which should be the same, right?) or Chrome, but it does seem to happen on IE. I'll see if I can repro on Iceweasel.

geordanr avatar Oct 26 '14 17:10 geordanr

Have you disabled third party cookies? Of course I have.

Is there any way you can move the cookie to the proper place?

yooden avatar Oct 26 '14 18:10 yooden

I don't think so; the language check is AJAXed to yasb-backend.herokuapp.com, and that's what's setting the session cookie.

Could you whitelist yasb-backend?

Also, presumably this means you aren't able to log in with OAuth either.

geordanr avatar Oct 26 '14 18:10 geordanr

My apologies, I neglected to respond in time, but I would like to keep this open. If not as a bug, then as a feature request.

I think that in this day and age, browsers should be as paranoid as possible, and rejecting third-party cookies is a part of that. To be frank, I consider third-party cookies to be an especially useless "feature" of the web. Your situation I assume does not allow for an easy alternative, but this does not mean that this alternative is acceptable. I don't think it is, and I don't think that anything violating these ground rules can be.

Using AJAX to access the cookie is still worse, since common add-ons don't work. In my case, my cookie manager has no way of noticing the AJAX cookie.

Yes I could whitelist them manually, but the problem is still a problem if I have to manually change my browser config to make it work.

Thanks for your time, and thanks for the great tool!

yooden avatar Jan 24 '15 17:01 yooden

I'd have to rehost the app off of github.io since it's a static page and I can't generate cookies for it (as far as I know), and that would be too disruptive.

I'll leave this open for other people to comment on regarding ways to address this.

geordanr avatar Jan 24 '15 18:01 geordanr

Hey @geordanr, a colleague and I have the problem that language and Google auth are not remembered as well. On my home PC Chrome is not blocking third party cookies and the backend cookie exists, but it seems to expire on browser session end?

(of course it's three years later)

image

pogster avatar Jan 11 '18 19:01 pogster