浏览器在后续请求中不发送cookie

时间:2017-12-05 11:25:51

标签: python python-3.x cookies web sanic

使用cookie进行用户识别的项目。

当用户到达时,它会调用该服务(在localhost中运行),并且带有响应头的服务发送cookie如下所示:

curl 'http://127.0.0.1:8000/api/v1.0/tracking' -X OPTIONS -H 'Access-Control-Request-Method: POST' -H 'Origin: http://local.com:8080' -H 'Access-Control-Request-Headers: content-type,x-forwarded-for' --compressed

响应标题如下所示:

HTTP/1.1 200 OK
Connection: keep-alive
Keep-Alive: 60
Access-Control-Allow-Headers: Content-Type, Access-Control-Allow-Headers, x-forwarded-for
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: POST, PATCH, GET
Content-Length: 0
Content-Type: text/plain; charset=utf-8
Set-Cookie: id=random_id_123_123; expires=Wed, 06-Dec-2017 10:57:36 GMT; Domain=.local.com; Path=/

然后在特定用户操作后,该应用发送以下API请求:

curl 'http://127.0.0.1:8000/api/v1.0/tracking?event=video_added&user_id=123123123' -H 'Origin: http://local.com:8080' -H 'Accept: */*' -H 'Referer: http://local.com:8080/' -H 'Connection: keep-alive' --compressed

上述请求的请求标头如下所示:

GET api/v1.0/tracking?event=video_added&user_id=123123123 HTTP/1.1
Host: 127.0.0.1:8000
Connection: keep-alive
Accept: */*
Origin: http://local.com:8080
User-Agent: My user agent
Referer: http://local.com:8080/
Accept-Encoding: gzip, deflate, br
Accept-Language: en-US,en;q=0.9

我期待第一个请求收到cookie(random_id_123_123),因为响应头将是第二个请求的请求头。

网站正在运行:http://local.com:8080(实际上在本地计算机上运行,​​我的vhost配置指向127.0.0.1 local.com),并由python SimpleHTTPServer提供服务。

设置cookie的后端服务也在localhost的端口8000上运行。 似乎我在实施过程中遗漏了一些东西。那是什么?

编辑:这是code

2 个答案:

答案 0 :(得分:5)

您的问题是Cookie只会根据域名发送。你的代码有

var settings = {
  "crossDomain": true,
  "url": "http://127.0.0.1:8000/api/v1.0/tracking?event=video_added&tracking_id=123123123",
  "method": "GET",

}

网址为127.0.0.1:8000,如果您希望传递Cookie,则该网址应为local.com:8000

答案 1 :(得分:1)

上次检查时,curl默认情况下没有启用Cookie。

为此,您需要:

  • 使用参数-b / path / to / cookiejar读取cookie。
  • 使用参数-c / path / to / cookiejar来编写cookie。

所以你的请求应该成为:

curl -c cookiejar 'http://127.0.0.1:8000/api/v1.0/tracking' \
-X OPTIONS -H 'Access-Control-Request-Method: POST' \
-H 'Origin: http://local.com:8080' \
-H 'Access-Control-Request-Headers: content-type,x-forwarded-for' \
--compressed


curl -b cookiejar 'http://127.0.0.1:8000/api/v1.0/tracking?event=video_added&user_id=123123123' \
 -H 'Origin: http://local.com:8080' \
 -H 'Accept: */*' \
 -H 'Referer: http://local.com:8080/' \
 -H 'Connection: keep-alive' --compressed
相关问题
最新问题