PHP Classes

Bad Behavior for This Login

Recommend this page to a friend!

      PHP Classes blog  >  Single Sign-On authen...  >  All threads  >  Bad Behavior for This Login  >  (Un) Subscribe thread alerts  
Subject:Bad Behavior for This Login
Summary:New login procedure forces me to make my browser insecure.
Messages:2
Author:Cynthia R. Douglas
Date:2010-08-17 12:51:25
Update:2010-08-17 22:16:20
 

  1. Bad Behavior for This Login   Reply   Report abuse  
Picture of Cynthia R. Douglas Cynthia R. Douglas - 2010-08-17 21:11:00
Being paranoid about cookies, I normally only allow the direct site I am at to set them. I don't want third party cookies enabled on my computer.

However, the only way to log in to PHP Classes now is to allow third party cookies.

I seriously object to this.

I will have to reset my browser settings every time I want to log into this site and then unset them when I leave.

This is a royal pain.

Cheers,
Cynthia

  2. Re: Bad Behavior for This Login   Reply   Report abuse  
Picture of Manuel Lemos Manuel Lemos - 2010-08-17 22:16:20 - In reply to message 1 from Cynthia R. Douglas
There is nothing to be paranoid about it. You only need to allow cookies from https://accounts.icontem.com/ , which is the single sign-on site. Icontem is the company that owns the PHPClasses site.

In reality https://accounts.icontem.com/ is not a third party site, but browsers consider it third party because it opens in an iframe in the middle of a page of PHPClasses.

In a few days another site will be launched. You will be able to use the same account you use to access PHPClasses to access the new site. I am sure you would consider it even more annoying if you had to create a new account to access the new site.

Other than that, the new login page is available only by secure HTTP (HTTPS/SSL), unlike in the past. That protects you from somebody snooping your connections and steal you password to take over your account.

In sum, there is nothing to worry.