I have a site that has part of its content on one website with its own unique DNS-addres, and the Webobjects app resides in an iFrame on another website with another DNS-address.
The first call from the website fills the frame with a directAction, then the webObjects app in the iFrame is on its own: no funky inter-frame-inter-domain javascript messaging whatsoever. That works fine with Firefox, Opera, Chrome, Safari, and Chimera on different platforms. However somebody told me of an obscure webbrowser called something like InTheNet Exploder or what, and guess what? That thing does not work with this setup. I first thought that it might have something to do with cross-site scripting, so I turned that security setting off that prevented that from working. That did not help. The odd thing was that the moment the application in the iFrame is continued in a new tab (just right click on a link in the app and go to new tab), the thing worked perfectly. On a hunch, I looked for the cookies setting in this IE thingy as I had set the sessionid stored in cookies with setStoresIDsInCookies(true) in the Session constructor. You can find these thing under the Advanced Privacy Setting. There was a checkbox to always allow session cookies. When I turned that thing on so it always allowed for Session Cookies, it was fixed. After removing the setStoresIDsInCookies(true) and restoring the default setStoresIDsInCookies(true), everything even worked in the default settings of this Explorer thing. Just to make sure that nobody else has to fire up WireShark, remove all his website code to barebones, test on different websites to discover it seems to have something to do with cross-site scripting and waste another day that should have been spent in blissful ignorance. Johan Henselmans [email protected] _______________________________________________ Do not post admin requests to the list. They will be ignored. Webobjects-dev mailing list ([email protected]) Help/Unsubscribe/Update your Subscription: http://lists.apple.com/mailman/options/webobjects-dev/archive%40mail-archive.com This email sent to [email protected]
