Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 270
  • Last Modified:

Domain problem.

Hi experts,
  I'm trying to acsess a cookie created for domain ".xyz" in another domain ".abc". Is it possible. If yes or if no can you provide any location/url where I can get complete information about this issue.

Also I want the specification for identifing a valid domain name,
like is ".abc" a valid domain name only ,"com", ".edu" etc. are the only valid domain names. It would be great if you can provide any link or url where I can get the complete information.

Karan
0
Manish
Asked:
Manish
  • 9
  • 7
  • 5
2 Solutions
 
TimYatesCommented:
Not possible...

Cookies are private to the domain that created them...

For obvious reasons :-)

Tim
0
 
ManishLeadAuthor Commented:
What about valid domain name q?
0
 
Mayank SAssociate Director - Product EngineeringCommented:
http://support.rapidsystem.net/ntfaq/r80.html says "The rules are 67 characters including the extension (e.g. .com, .net, .org, etc.). The domain name without the extension can be up to 63 characters. Only 0-9, a-z and the dash "-" are valid characters. The domain name cannot start or end with a dash."

http://www.digitaldaze.com/servers/support/help/dns_valid.html

http://www.shauninman.com/plete/2006/05/validating-domain-names

probably this is the most comprehensive one:

http://www.101domain.com/domain_help_faq_19.htm
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
TimYatesCommented:
http://www.shauninman.com/plete/2006/05/validating-domain-names

Someone there also brings up the very valid point that this will block IP addresses, which may not be satisfactory :-(

Tim
0
 
TimYatesCommented:
...bah ;-)
0
 
Mayank SAssociate Director - Product EngineeringCommented:
He he.... no problemo (like Arnold in Terminator 2)
0
 
ManishLeadAuthor Commented:
Is Cookie formed by
     http://abc.us.xyz website accessible to
     http://mno.ca.xyz ?
If yes , how?
If no,  then what to do?

In above URL what is domain? is it .us.xyz or .xyz?
What makes valid domain extention?
0
 
Mayank SAssociate Director - Product EngineeringCommented:
No, it should not be accessible.

For domain extension, I don't think there are any rules other than what I posted above.
0
 
TimYatesCommented:
>> If no,  then what to do?

What are you trying to do?  Share data between websites?
0
 
ManishLeadAuthor Commented:
>>What are you trying to do?  Share data between websites?
Yes, cookie data.
0
 
TimYatesCommented:
So you're trying to read cookie data from someone elses website?

You can't :-(

If both websites belong to you, then you may be able to do some sort of message passing between them to tie users together and share user data that way, but you can't just read cookies written by other sites...

It would be a huge security hole if you could...

Tim
0
 
ManishLeadAuthor Commented:
Ya Tim,
  Your second point is correct ,
What kind of message do I need to pass ?
0
 
Mayank SAssociate Director - Product EngineeringCommented:
It could be through a web-service or simply an HTTP post that you can send to a web-site:

http://www.javaalmanac.com/egs/java.net/Post.html 
0
 
TimYatesCommented:
If you have a single user database, then it will become easier, as user id credentials will be the same on both sites...
0
 
ManishLeadAuthor Commented:
Didnt get your point?
0
 
TimYatesCommented:
Can you explain properly what data it is you're trying to share?

We're shooting in the dark with suggestions otherwise
0
 
ManishLeadAuthor Commented:
My application is accessible through more than one domain. Domains are region specific, region most of the time are locale. Earlier my application was creating cookies which were accessible by that domain only eg ".ab.pqrs". Now I want the cookies generated in ".ab.pqrs" to be accessible by another domain ".ed.pqrs". From the above discussion it is clear that one cookie of one domain is not accessible by another domain. But my requirements are such that I want alternative for it.
Cookie basically contains information related to user preferences for the user who logged in like country, locale, few numbers used by application, etc.
I want to know how can I do this?
0
 
TimYatesCommented:
why not store these preferences in a database shared between the webapps?

Then when a user logs in, the cookie can just store their session id, and their preferences can be loaded from the database, no matter which site they log in to...

Tim
0
 
ManishLeadAuthor Commented:
In my case I can't store in Database. It should be handled throughs cookies only.
0
 
Mayank SAssociate Director - Product EngineeringCommented:
It should be handled as request parameters then, I guess.
0
 
TimYatesCommented:
>> It should be handled throughs cookies only.

The problem is, it can't be
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

  • 9
  • 7
  • 5
Tackle projects and never again get stuck behind a technical roadblock.
Join Now