Closed Bug 110501 Opened 23 years ago Closed 23 years ago

can't use avantgo

Categories

(Core :: Networking: Cookies, defect)

x86
All
defect
Not set
major

Tracking

()

VERIFIED INVALID
mozilla0.9.8

People

(Reporter: akkzilla, Assigned: morse)

References

()

Details

Go to the indicated url.  It should have a pair of username/passwd login fields
on the right side halfway down (though in my debug non-commercial build from
today, they're not there ... dunno what that means).

I type my name and password into the fields, click "log in", get a cookie dialog
asking whether I want to accept cookies from ami.avantgo.com; I click Yes
(remember this is also clicked) and get taken to a page that says "You must have
cookies enabled to use this service".  Checked the Cookie Sites dialog and I do
have the ami.avantgo.com cookies enabled (and have a couple of them set).  I
tried "Unblock cookies from this site", but it didn't help.

I see this in a 2001111109 build and also one from today.  I used to be able to
use avantgo, a few months ago.

It's possible that I have some other cookie (perhaps from an advertiser) blocked
that it wants, but if so, I need a way to find that out -- moz isn't telling me
what the problem is, and I'm seeing it on two different machines which have
different sets of cookies blocked (one is only a few days old and has relatively
few blocked cookies so far).
I just ran this in 4.7 after turning on "warn me".  ami.avantgo set five
cookies; no other site requested any.  Checking my cookies back in this mozilla
build, only three are set for ami.avantgo.com.  Looks like mozilla is refusing
two of the give cookies without telling me why.
This is working fine for me on nt.  akkana, can you reproduce this on nt or is 
it a linux-only problem?
I can't log into my AGEdwards account with 0.9.6, but I can with 0.9.5, could be
the same problem described here.

The script at <http://www.agedwards.com/BCJVerification.js> doesn't seem to be
able to set a cookie named "BCJ_COOKIE", which it uses to figure out if the
client supports cookies.

You don't need an account to see the problem, just go to
<https://www.agedwards.com/ageconnect/ageclogin>.  In 0.9.5 I am presented with
username and password fields, in 0.9.6 I get redirected to
<https://www.agedwards.com/bcj/CookieNotSetErr.html>.

To watch it f(l)ail, start the JavaScript Debugger (*before* loading the
acelogin), type "fbreak BCJVerification.js 3", and load the acelogin url. 
You'll be able to single step through the JS and watch the cookie not get set.
This happens on NT *and* Linux, running 0.9.6.
Bug 105917 describes a problem with Hotmail not being able to set cookies.  I am
seeing a similar problem at http://developerstore.com/ with build 2001111708. 
It is unable to set a cookie, and forwards me to an error page.  I have 'enable
all cookies' set, and no sites listed as blocked.
After a little more investigation, it seems that the main page
(http://developerstore.com/) sets 7 cookies.  If only some of those are
presented to the server, it will forward you to an error page asking you to
enable cookies, and does not appear to re-set the missing ones.  Deleting all
the cookies for developerstore fixes the problem (all the cookies get set, and
the site works).

Going to the original URL I was using
(http://developerstore.com/devstore/toolboxselect.asp) sets two cookies, then
forwards you to the error page (thus breaking the site entirely).  This problem
also occurs in IE, so please ignore this site.
Let's keep some focus here.  The original report by Akkana deals with avantgo 
and that's the only site that this report is about.  If you have another site 
not working, please report it in a separate bug.  Otherwise we wind up with a 
lot of noise here such as cookies don't work with developerstore.com but on 
second thought that's not a mozilla problem but rather a problem with coming 
into the site from the back door.

So focusing on avantgo only, can anyone confirm whether or not this is a 
linux-only problem?  (Tever, are you reading this?)  I was unable to reproduce 
it on an NT box.
bug 113331 filed re: ag edwards.
Status: NEW → ASSIGNED
Target Milestone: --- → mozilla0.9.8
Changing OS to ALL (Comment #4)
OS: Linux → All
I'm unable to reproduce the avangto problem with either a recent NT build or a 
recent linux build.  Therefore closing out as works-for-me.

Akkana, if you are still seeing this problem with a recent build, then reopen 
and I'll investigate further.
Status: ASSIGNED → RESOLVED
Closed: 23 years ago
Resolution: --- → WORKSFORME
Sorry Steve, I didn't see your comment.  

I can reproduce this on winNT 2002010303 but not always.  Therefore it is not
the AG edwards problem since you fixed that earlier.  But, I will need to look
into this a little bit more to find a set of steps that shows the problem reliably.

I can usually login if I try twice and then anytime after that.  In other words,
once the "you must have cookies enabled" page appears, if I hit the back button
and type my password, click submit, i am allowed in.

Then, in order to see the failure again I have to logout by clicking 'here' from
the main login page, delete the sites cookies and it's listing in the 'stored
sites' menu in cookie manager, and then try to login again.    It will always
give me the error dialog.   Could you possibly try these steps?  
Status: RESOLVED → REOPENED
Resolution: WORKSFORME → ---
OK, based on tever's last comment, I can reproduce this problem reliably as 
follows:

1. Start with fresh profile
2. Go to http://avantgo.com/frontdoor/index.html
3. Enter my valid username/password, leave the "remember me" box checked
4. Click on submit
5. Get password-manager do-you-want-to-save dialog.  Answer no.
6. Site is successfully entered
7. Hit back button, takes you to same page as in step 2
8. Click on "here" to log out
9. Go to cookie manager and delete all cookies
10. Repeat steps 3, 4, and 5
11. Get the error screen saying "Cookies Required".

Well, if that's the only scenario that is causing the problem, I contend that 
this bug report is invalid.  My reasoning is that the site is keeping some other 
state information besides just cookies.  So when you delete the cookies in step 
9, you are deleting some but not all of the state information and the site is 
able to detect this.  That's why you get the error message.

"What other state could there be besides cookies?", I hear you asking.  
Reply: there could be hidden fields on the form itself.  To test out that 
theory, I inserted a step 9a:

   9a. Press the reload button

This reload would cause any state information saved on the form to be erased.  
By doing so, I no longer got the failure in step 11.

BTW, the checking of the "remember me" box in step 3 makes no difference -- 
behavior is same whether you keep it checked or not.

Therefore closing this out as invalid per tever's steps for reproducing.  It 
might be that the original steps posted by akkana were hitting some other 
problem, but I can't reproduce that (unless I add tever's steps) so whatever 
akkana was hitting has probably been fixed.

If I'm wrong and you can still reproduce this with a valid set of steps (i.e., 
one that doesn't destroy the cookie state), then reopen.
Status: REOPENED → RESOLVED
Closed: 23 years ago23 years ago
Resolution: --- → INVALID
If it matters, when I originally reported this, I saw it even when I entered the
url again (I didn't have to hit "back" to see it).  But who knows what the cache
may be doing -- perhaps it was doing the same thing for entering the same url as
it did when hitting the back button.

I don't have a different reproducible scenario to offer, in any case, and I've
stopped using avantgo for other reasons so I can't say whether this is still a
real-life blocker or not.
V/invalid.
QA Contact: tever → benc
Status: RESOLVED → VERIFIED
You need to log in before you can comment on or make changes to this bug.