Closed Bug 572885 Opened 15 years ago Closed 10 years ago

Secure cookies silently removed

Categories

(Core :: Networking: Cookies, defect)

Product:
Core
Component:
Networking: Cookies
Version:
1.9.2 Branch
Platform:
x86
All
Type:
defect
Priority:
Not set
Severity:
major

Tracking

()

Status:
RESOLVED INCOMPLETE

People

(Reporter: wlee, Unassigned)

References

(
URL
)

Details

User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv:1.9.2.3) Gecko/20100401 Firefox/3.6.3 Build Identifier: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.6; en-US; rv:1.9.2.3) Gecko/20100401 Firefox/3.6.3 Secure cookies are being removed without notice before the cookie's expiration date. This is happening at least for one site - www.bigtent.com. This site sets a pair of cookies - one for non-SSL pages and a secure cookie for SSL pages. Reproducible: Sometimes Steps to Reproduce: 1. Register for BigTent at https://www.bigtent.com/groups/savingdinner 2. Once registration is complete and you have a valid username/password, log in. 3. Notice that two cookies are set by bigtent.com: login_key and ssl_login_key. Both have expiration dates well into the future. 4. Click around the non-SSL pages. Then go to the SSL page http://www.bigtent.com/profile/me. 5. Repeat this process until you are prompted to log in again. 6. View your cookies. Actual Results: Notice that ssl_login_key has been removed. login_key still exists. Expected Results: both login_key and ssl_login_key still exist. ssl_login_key is a secure cookie.
Version: unspecified → 3.6 Branch
does this still reproduce for you?
Flags: needinfo?(wlee)
Component: General → Networking: Cookies
Flags: needinfo?(wlee)
Product: Firefox → Core
Version: 3.6 Branch → 1.9.2 Branch
wlee, if this is still an issue please reopen this bug. Thanks for the report!
Status: UNCONFIRMED → RESOLVED
Closed: 10 years ago
Resolution: --- → INCOMPLETE
You need to log in before you can comment on or make changes to this bug.