Safari doesn't set Cookie but IE / FF does

Solution 1

It looks like you hit a Safari bug here; you are redirecting any visiting browser to /entry while setting the cookie at the same time, and Safari is ignoring the Set-Cookie header when encountering the 302 HTTP status:

$ curl -so /dev/null -D - http://4much.schnickschnack.info/
HTTP/1.1 302 Moved Temporarily
Server: nginx/0.7.61
Date: Sun, 19 Jul 2009 12:20:49 GMT
Content-Type: text/html;charset=utf-8
Connection: keep-alive
Content-Length: 14260
Content-Language: de
Expires: Sat, 1 Jan 2000 00:00:00 GMT
Location: http://4much.schnickschnack.info/entry
Set-Cookie: colorstyle="bright"; Path=/; Expires=1248092449.12
Set-Cookie: _ZopeId="73230900A39w5NG7q4g"; Path=/

Technically, this would be a bug in Apple's Foundation Classes, I've found a WebKit bug that states this is the case.

I suppose the workaround is to set the cookie not in index_html but in entry instead.

In the intervening years since I first answered this question, this issue now appears solved, at least it was for Safari 6 when someone tested all major browsers for Set-Cookie support on 302 redirects in 2012.

Solution 2

A month ago, I ran into this issue. At first I thought it was a corrupted cookie jar as I could clean out the cookies and go.

However, it popped up again. This time I spent an hour going through it, watching what was sent, reviewing what safari sent back, and I found the problem.

In this case, I had an array of cookie values being sent to the browser after login prior to the redirect. The values looked something like 'user id', 'user full name', 'some other id', etc.

( yes, the id's are encrypted so no worries there )

My user full name was actually in a <lastname>, <firstname> format.

When safari was posting the cookie back to the server, everything after the comma after the lastname was dropped. It was only posting back values up to that point.

When i removed the comma the rest of the values started working just fine.

So it appears that if you send a cookie value that contains a comma, then safari doesn't properly escape that in it's internal storage. Which leads me to think that if they aren't properly escaping commas, then there are probably some security issues with safari's cookie handling code.

Incidentally, this was tested on Win 7 x64 with safari 4.0.5. Also I put up a web page at: http://cookietest.livelyconsulting.com/ which shows this exact problem.(I removed that test site)

IE, FF, and chrome all correctly set the cookie. safari does not.

Solution 3

Looks like this is no longer an issue. See http://blog.dubbelboer.com/2012/11/25/302-cookie.html

Related videos on Youtube

01 : 36

Do these steps if Safari can't open sites in your iPhone

Kundan Bhattarai

771

05 : 08

What Are Cookies? And How They Work | Explained for Beginners!

Create a Pro Website

428

01 : 40

How to ENABLE COOKIES on Safari iPhone?

mrhackio

176

02 : 00

☝️ How to ENABLE COOKIES MAC?

mrhackio

169

44 : 29

Diana and Roma Kids Stories Collection | Moral Stories for Children

Love, Diana

49

01 : 02

How to Enable Cookies on Mac 2021 *NEW UPDATE*

The How To Cow

44

02 : 49

How to Enable/Disable Block All Cookies in Safari on iPhone (iOS 14.4)?

TechMeSpot

37

04 : 18

Safari Cookie Management

GoFor Technology

29

01 : 40

how to fix cookies are disabled/Disable Block All Cookies in safari iPhone Goolge account free fire

NSR GAMING

17

01 : 15 : 05

Lingokids ABC Chant + More Songs for Kids 🎶 Lingokids Songs

Lingokids Songs and Playlearning

15

07 : 52

Third Party Cookies: How to enable or disable them in Firefox, Chrome, Safari, and Opera

Learning Channel

13

05 : 24

How to Clear Cache and Cookies Safari Macbook

Ricardo Gardener

10

02 : 26

how to fix cookies are disabled/Disable Block All Cookies in safari iPhone Goolge account / IPHONE11

NSR GAMING

2

Author by

Gomez

Updated on February 22, 2022