Following the advice of Kevin Ballard on StackOverflow, I created IGIsolatedCookieWebView, a subclass of WebView that does not access or affect the system-wide shared cookie storage (shared among all WebKit apps). Each instance of IGIsolatedCookieWebView has its own cookie storage so that, for example, multiple instances of IGIsolatedCookieWebView within the same application can be logged in [...]
¶
Posted 11 March 2010
† 2718.us
§
Mac OS X § Programming
‡
°
Also tagged: cocoa, cookie, IGIsolatedCookieWebView, isolated cookies, mac, mac os x, mit, mit license, os x, stackoverflow, subclass, webkit, WebView
In case anyone was still curious following my previous headache post, it is possible to integrate WP2.6 and bbPress 0.9.0.2. I say “possible” because while I’ve got it working as far as I can tell (without having modified core code in either WP or bbP), I haven’t really tested it and it’s a mess. More [...]
¶
Posted 16 August 2008
† 2718.us
§
Web Programming
‡
°
Also tagged: 0.9.0.2, 2.6, action hook, add_action, bbpress, bbpress 0.9.0.2, clear_auth_cookie, cookie, integration, set_auth_cookie, wordpress, wordpress 2.6, wp, wp2.6
Now, I’m really big on *not* complaining about new versions of things and I especially dislike the practice of complaining about how a new version of WordPress broke some plugin that is of dire importance to someone’s website, but WordPress 2.6 is starting to give me a headache. I’ve already posted thrice about issues with [...]
So, as a followup to parts 1 and 2, per WordPress Trac ticket #7001, WordPress 2.6 has split up the login cookies into three parts: what was the one and only login cookie in 2.5 is now limited to /wp-admin there’s a copy of that one that’s just limited to /wp-content/plugins, for backward compatibility with [...]
¶
Posted 03 August 2008
† 2718.us
§
Web Programming
‡
°
Also tagged: 2.6, action hook, add_action, admin_cookie_path, authentication, auth_redirect, cookie, cookie path, cookie paths, COOKIEPATH, do_action, hook, is_user_logged_in, plugin, plugin api, security, set_auth_cookie, user, user authentication, user login, wordpress, wordpress 2.6, wp, wp2.6
Having stated the problem and now played further, I’ve got good news and bad news. The good news is that there’s an action hook, ‘set_auth_cookie’, that gets called whenever the cookies are set, so if the stuff for which you want to authenticate is on the same server but at a different path, you can [...]
¶
Posted 29 July 2008
† 2718.us
§
Web Programming
‡
°
Also tagged: 2.6, action hook, add_action, admin_cookie_path, authentication, auth_redirect, cookie, cookie path, cookie paths, do_action, hook, plugin, plugin api, security, set_auth_cookie, user, user authentication, user login, wordpress, wordpress 2.6, wp, wp2.6
I’ve been hoping for the last hour or two that there’d be just one post on this topic, giving the problem and solution all together, but I have yet to solve it and so I’m just going to post the issue for now, until I have a solution. As a security measure in WP2.6, login [...]
¶
Posted 29 July 2008
† 2718.us
§
Web Programming
‡
°
Also tagged: 2.6, admin_cookie_path, authentication, auth_redirect, cookie, cookie path, cookie paths, security, user, user authentication, user login, wordpress, wordpress 2.6, wp, wp2.6
Somehow (my best guess is it happened with the database update in the WP2.5.1 upgrade), the database secret, stored as “secret” and visible on /wp-admin/options.php, changed making the logins for bbPress and WordPress clobber each other (both apps using the same cookie, but each app rewriting the cookie with its own contents, rather than recognizing [...]
¶
Posted 01 May 2008
† 2718.us
§
Blogging
‡
°
Also tagged: 2.5.1, bbpress, cookie, database secret, integrate, integration, options.php, secret, upgrade, wordpress, wp, wp2.5.1
I’ve gotten into the habit of actually reading the various blogs to which there are links on my WordPress dashboard and I saw this today from boren.nu: To make cookies secure against attacks where someone has managed to get into your database through an SQL injection exploit or other means, WordPress 2.5 introduced a user-definable [...]
I not only wanted to integrate my own other things into my WordPress-based site, but I wanted forums, too, so of course I thought of bbPress. It seems to integrate well with WordPress, but then suddenly strange things started happening with login and logout. For instance, when I logged in with bbPress, I couldn’t get [...]
¶
Posted 20 April 2008
† 2718.us
§
Web Programming
‡
°
Also tagged: authentication, bbpress, cookie, cookie domain, domain, integration, login, user, user authentication, wordpress, wordpress 2.5, wordpress login, wp, wp2.5