cookie problem with iframe and different domain

Question

ortora 0 Newbie Poster

19 Years Ago

Hello everyone, I have an ASP chat inside an IFRAME. The ASP file is hosted on a different domain than the main website.
When the user logs on by entering their name, the chat stores a cookie so the user can start posting messages. However since the cookie is stored using the main domain (not the iframe), the chat doesn't recognise it anymore and keeps asking to log on.

How can I get it to recognise the cookie, or to store it with the correct domain?

Your help is appreciated

Here is the coding used by the chat to recognise the cookie:

<%
'/// Get Nick Name
nick=request("nick")
xlaSBnick=request.cookies("xlaSBnick")"
if nick<>"" then
response.cookies("xlaSBnick")=nick
xlaSBnick=nick
end if
if xlaSBnick="" then
formproperties="action=bottomframe.asp onsubmit='return validatenick();'"
else
formproperties="action=receiveframe.asp target=xlaSBreceive onsubmit='return shout();'"
end if
%>

asp

5 Contributors
4 Replies
1K Views
3 Years Discussion Span
Latest Post 15 Years Ago Latest Post by ask2gaurav

fxj10cn 0 Newbie Poster

17 Years Ago

You can not using cookies. You should use javascript to send the information to the iframe

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

dmcg4rry 0 Newbie Poster · Answer 1 · 2007-09-11T20:58:41+00:00

Hello everyone, I have an ASP chat inside an IFRAME. The ASP file is hosted on a different domain than the main website.
When the user logs on by entering their name, the chat stores a cookie so the user can start posting messages. However since the cookie is stored using the main domain (not the iframe), the chat doesn't recognise it anymore and keeps asking to log on.
How can I get it to recognise the cookie, or to store it with the correct domain?
Your help is appreciated
Here is the coding used by the chat to recognise the cookie:

I'm having this same problem... I got around it temporarily by setting each user's browser to trust the domain. I hope there's a better solution though.

Fungus1487 55 Posting Pro in Training · Answer 2 · 2007-09-15T02:35:55+00:00

you can set the domain on a cookie as follows

Response.Cookies("CookieName").Domain = "www.mydomain.com"

and even a path of the cookie on that domain to make sure it can only be read by the path on that domain and not another

Response.Cookies("CookieName").Path = "/maindir/subdir/path"

ask2gaurav 0 Newbie Poster · Answer 3 · 2008-12-23T14:54:54+00:00

Some browsers allow third party cookies and in some browsers, like Internet Explorer, it depends on the privacy settings of the browser. In IE6 (Internet Explorer 6) with the default privacy setting of ‘Medium’, third party cookies will be deleted.

As it turns out, there is a simple solution. If you supply a ‘compact privacy policy’ with your page, then IE will treat the cookies with respect and let them through.

ASP.Net code HttpContext.Current.Response.AddHeader("p3p", "CP=\""IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT\""") PhP code header('P3P:CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"'); For more information on this, please visit this url:
http://viralpatel.net/blogs/2008/12/how-to-set-third-party-cookies-with-iframe.html