Good Morning David
The domain name you supply must conform to rfc2109 domain name specification
(reference)
http://www.faqs.org/rfcs/rfc2109.html
to quote
"7.2 Protocol Design
The restrictions on the value of the Domain attribute, and the rules
concerning unverifiable transactions, are meant to reduce the ways
that cookies can "leak" to the "wrong" site. The intent is to
restrict cookies to one, or a closely related set of hosts.
Therefore a request-host is limited as to what values it can set for
Domain. We consider it acceptable for hosts host1.foo.com and
host2.foo.com to share cookies, but not a.com and b.com.
"
when in doubt your domain name should specify wither the FQDN
or the IP
HTH,
Martin-
----- Original Message -----
From: "David Thielen" <[EMAIL PROTECTED]>
To: <user@struts.apache.org>
Sent: Thursday, September 08, 2005 11:46 PM
Subject: Cookie problem is killing me
Hi;
No this isn't a struts problem - but this is driving me up the wall and
there are a lot of smart people here.
This is all on my system - Windows XP / IIS 5.1. So I am hitting localhost
from IE to tomcat.
When I add a cookie to the HttpServletResponse, if I leave the cookie
domain
unset (ie null), then it creates a cookie using the name of the servlet.
If I set the domain - I have tried "localhost", ".localhost", "belle", and
".belle" (my computer's name is belle), then no cookie is saved.
Any idea why?
Thanks - dave
David Thielen
303-499-2544
www.windwardreports.com <http://www.windwardreports.com/>
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
