Avatar for Username

Tìm kiếm hỗ trợ

Tránh các lừa đảo về hỗ trợ. Chúng tôi sẽ không bao giờ yêu cầu bạn gọi hoặc nhắn tin đến số điện thoại hoặc chia sẻ thông tin cá nhân. Vui lòng báo cáo hoạt động đáng ngờ bằng cách sử dụng tùy chọn "Báo cáo lạm dụng".

Learn More

authentication cookie missing for <1% of firefox users

  • 3 trả lời
  • 4 gặp vấn đề này
  • 47 lượt xem
  • Trả lời mới nhất được viết bởi zeroknight

Wilga Cha
Wilga Cha
more options

On our online application we are facing with some strange behavior for a small percentage of our firefox users (<1%).

When doing oauth2 authorization, after generation of the authentication token we redirect to another platform but we are detecting that for a small percentage of Firefox the cookie (my_auth_cookie) with the auth token is not present.



GET: https://www.mywebsite.com/application/login Response:

new location https://www.mywebsite.com/otherapplication/redirect


set-cookie: my_auth_cookie expires=Mon, 04 Dec 2023 13:49:15 GMT; domain=.mywebsite.com; path=/; secure; samesite=lax; httponly 


      2. GET https://www.mywebsite.com/otherapplication/redirect

          Set-cookie: mycookie: value

          Host: www.mywebsite.com


In cookie tab I see my_auth_cookie (value: xxxx, domain: .mywebsite.com, expires: Mon, 04 Dec 2023 13:49:15 GMT, httponly: checked, secure: checked,SameSite: Lax, partitionkey: empty, Priority: medium



I’ve tried to replicate but without success (with multiple extensions, including multi-account containers), with multiple configurations of Total Cookie Protection.

Again, this only seems to be happening to a very limited number of firefox users but for these, it happens 100% of the time. We see it occurring for versions 119 and 120 but now and then for older versions.

Feedback reports no extensions&addons.


Any ideas on what we could be dealing with? Any help would be greatly appreciated.

On our online application we are facing with some strange behavior for a small percentage of our firefox users (<1%). When doing oauth2 authorization, after generation of the authentication token we redirect to another platform but we are detecting that for a small percentage of Firefox the cookie (my_auth_cookie) with the auth token is not present. GET: https://www.mywebsite.com/application/login Response: new location https://www.mywebsite.com/otherapplication/redirect set-cookie: my_auth_cookie expires=Mon, 04 Dec 2023 13:49:15 GMT; domain=.mywebsite.com; path=/; secure; samesite=lax; httponly 2. GET https://www.mywebsite.com/otherapplication/redirect Set-cookie: mycookie: value Host: www.mywebsite.com In cookie tab I see my_auth_cookie (value: xxxx, domain: .mywebsite.com, expires: Mon, 04 Dec 2023 13:49:15 GMT, httponly: checked, secure: checked,SameSite: Lax, partitionkey: empty, Priority: medium I’ve tried to replicate but without success (with multiple extensions, including multi-account containers), with multiple configurations of Total Cookie Protection. Again, this only seems to be happening to a very limited number of firefox users but for these, it happens 100% of the time. We see it occurring for versions 119 and 120 but now and then for older versions. Feedback reports no extensions&addons. Any ideas on what we could be dealing with? Any help would be greatly appreciated.

Tất cả các câu trả lời (3)

cor-el
cor-el
  • Moderator
  • Top 10 Contributor
more options

Could be a problem with Total Cookie Protection.

Hữu ích?

Wilga Cha
Wilga Cha Người tạo câu hỏi
more options

Hi, thank you for your reply. We tried multiple configurations of total cookie protection and could not replicate. Feedback from clients is that no specific configurations were used - so we are assuming default values.

Hữu ích?

zeroknight
zeroknight
more options

Defaults can vary due to rollouts, you can see active ones by visiting about:studies.

Hữu ích?

Đặt một câu hỏi

Bạn phải đăng nhập vào tài khoản của bạn để trả lời bài viết. Vui lòng bắt đầu một câu hỏi mới, nếu bạn chưa có tài khoản.