Can a Safari extension save cookies? - ajax

Is it possible for Safari extensions to save cookies locally instead of using the browser's cookies? The problem with HTTPS ajax requests bringing up a login popup is starting to rankle me. I know how to login to Google services from a command line script using curl and perl/php. If I can save my cookies somewhere on the local filesystem I can avoid all this hassle.

Nope. Safari extensions have no access whatsoever to the local filesystem. You can only use cookies directly from the browser or local storage.

Related

Passport cookies not working on Incognito mode

I can't find any clue about this problem, what make me wonder if I am wrong from basic knowledge.
I am building an application with mongo, nodejs (with passport), and react.
Users can log in into this application correctly in normal windows browsers.
Session cookie is set with passport, and the flow is working.
Problem starts, when I tried to log in through Incognito Mode from google chrome (or any other browser).
Is any problem about cookie session in Incognito Mode?
Should I use other method to go over this case?
I think it is not relevant any code of how I set cookie session, but if someone need it I will paste it.

Where does chrome store its session cookies?

I have a macOS. I want to export the 11 cookies with domain .facebook.com that is stored by Google Chrome.
I want to know where Chrome stores session cookies. I am using https://chrome.google.com/webstore/detail/cookies/iphcomljdfghbkdcfndaijbokpgddeno/ to read my cookies. I want to know where these are stored. Upon searching the web, I found that it is stored in ~/Library/Application Support/Google/Chrome/Default/ as Cookies as a sqlite3 file. Upon reading it I seemed convinced that it is the same cookies.
When I delete all my cookies in chrome://settings/content/cookies or via the extension, I am logged out of facebook. However the file Cookies in ~/Library/Application Support/Google/Chrome/Default/ is unchanged. It has a unchanged timestamp of yesterday.
How do I export my current cookies from chrome? When I removed the file Cookies and reloaded facebook, I was still signed in. So, thats not the Cookie.

How to use chrome with Windows authentication?

I am trying to perform HTTP get & put operations on a intranet URL which is authenticated using Microsoft active directory domain accounts. This is working fine with IE but not using chrome. My chrome version is 49.0.2623.108.
Accessing the URL throws up a dialog for username and password and upon filling details, it fails with ERR_INVALID_HANDLE. Following are the things that I tried and failed(Please excuse for the lack of brevity):
I tried adding the URL and the Active directory server to Local intranet zones but still chrome returns the same error.
This link https://serverfault.com/questions/19914/google-chrome-passthrough-windows-authentication says we need to use authserverwhitelist for chrome. It is not working. Apparently, this feature of setting parameters has been moved from commandline to policy settings as per https://bugs.chromium.org/p/chromium/issues/detail?id=472145
I tried using policy settings like using chrome policy template. I imported the policy template on local computer policies\Administrative templates in gpedit.msc and set the parameters AuthServerWhitelist and AuthNegotiateDelegateWhitelist. I restarted the machine as well. It didnt help. Chrome still throws the same error.
I tried setting AuthserverWhitelist and AuthNegotiateDelegateWhitelist parameters on registry as well under path: HKLM\Software\Policies\Google\Chrome.
Is there a way to get this working on google chrome(version 49.0.2623.108)?
PS: Also after development, I am looking to package these web pages into a chrome app. Would chrome allow usage of windows active directory authentication in its app environment? Is there any way to fix it?

Why does sandbox app also need secure canvas url?

I already enabled sandbox mode, but still not allowed to save changes without https canvas url. This makes it a lot harder to test any canvas page related changes.
Just enter the same URL as your app, and add in https instead of http. It should still use the HTTP URL providing you are using Facebook over a non-secure connection.

Safari session always forgets session variables in asp.net mvc 3

I am building a small web application and in my application I am using the session object to store information across calls to server. This works quite fine in Firefox \ Chrome\ IE, but it seems to fail in Safari. In Safari the session keeps forgetting that I've stored values in it.
Why is this happening? what can be done?
The session is based on an id stored in a cookie. The server uses this Id to link to your session on the server. It's highly likely cookies are off here. Load up fiddler or turn on tracing to see what cookies are being sent over... You should see the one with aspnetsessionid in it, if not your browser prob has them turned off.
You may also want to take a look over here: Facebook API and Safari
Looks like, if any redirect is sent when you are establishing cookies, they will be viewed as 3rd party cookies and could cause issues with your server-side.
if your settings on Safari are set to not allow cookies, then this fails. I have just had the same issue on an iphone web app im writing. I enabled cookies and all worked fine.
The whole idea of the Session is that the values are stored server-side. Safari can't possibly cause the server to forget something. Either the value wasn't ever stored in the Session or Safari is failing to render the Session value.
Trying using a debugger to confirm if the Session holds the correct value when passing the value into the Session and when you're attempting to retrieve the value from the Session.

Resources