Debugging IE6 & IE7 cross domain cookie issue

Cancelled Posted Dec 15, 2008 Paid on delivery
Cancelled Paid on delivery

We are having difficult tracking down a bug where users accessing a blog to comment cannot comment. The issue is that the comments require authentication with the main website, but it seems that cookie is getting lost. It used to work until a recent upgrade of the publishing software.

## Deliverables

Here's the workflow that will demonstrate the issue in IE7 and IE6 as well. This issue does not happen in FireFox. Unfortunately 80% of users are on IE.

1. Go to [url removed, login to view]

2. Click on an entry, e.g. [url removed, login to view]

3. Click Sign-in to comment on this entry link

* if you have "remember me"/autologin enabled, the page goes to the white screen with the Click here if you are not redirected message and then goes back to to [url removed, login to view] seeing the same Sign-in to comment on this entry link

* if you do not have "remember me"/autologin enabled, you get the white screen with the Click here if you are not redirected message before being taken to the Edmunds sign-in page [url removed, login to view] where you then enter your email address/password, click submit and are returned to the blog entry [url removed, login to view] but still see the Sign in to comment on this entry. line rather than the comment box.

Repeat the same process with another blog such as [url removed, login to view] and you will not have a problem and can comment.

The publishing system is running under blogs.edmunds.com. The Auto Observer script calls out to a script running on [url removed, login to view] that gets the cookie that is needed to for authentication and insert the value in the auto observer code.

This used to work for all browsers and it works for FireFox. What we are looking for is:

* Examine HTTP headers and apply knowledge of IE browser security and cookie policy to determine what the software is doing that IE does not except or see this cookie.

* Suggest work arounds. A JavaScript solution is preferred rather then hacking the publishing systems core.

* Develop a test to demonstrate the issue and the work around in action.

Currently I cannot provide access to the live server.

Feel free to ask questions.

Engineering JavaScript MySQL PHP Software Architecture Software Testing Testing / QA Usability Testing Web Hosting Website Management Website Testing

Project ID: #3473670

About the project

Remote project Active Dec 20, 2008