1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

As Designed Can't Login with cookies disabled

Discussion in 'Resolved Bug Reports' started by dartho, Sep 30, 2010.

  1. dartho

    dartho Active Member

    If you have cookies blocked, you cannot log into XenForo - no errors are kicked up, it just returns you to the screen you were viewing, still not logged in.
  2. ManagerJosh

    ManagerJosh Well-Known Member

    I can confirm this with Google Chrome.
  3. Mike

    Mike XenForo Developer Staff Member

    This is expected. We require cookies.
    digitalpoint, Floris and Forsaken like this.
  4. whynot

    whynot Well-Known Member

    Only for now or in the future too?
  5. Mike

    Mike XenForo Developer Staff Member

    It's a fundamental design decision. The only other option is to stick the session in URLs and that's not an option that we're happy with.
  6. Cezz

    Cezz Well-Known Member

    You could do a test for cookies though right? and at least show an error message stating cookies are required if the test fails?

    I totally agree with the not using a SID but if we do that need to explain to people why they can't login also.
    Ryan and Moses like this.
  7. whynot

    whynot Well-Known Member

    Unfortunately the forum users won't be happy with it...
    Maybe there is still time to change that design decision.
  8. Cezz

    Cezz Well-Known Member

    Or Maybe not... I don't think Session ID's should be in URL's ugly and pointless.. To get the best out of the web these days people need to realise that cookies are NOT evil.
  9. Kier

    Kier XenForo Developer Staff Member

    It's late 2010. Cookies are a prerequisite of browsing the Internet.
    Dean, Enigma, GameR and 2 others like this.
  10. Onimua

    Onimua Well-Known Member

    How many people do you know that browse with cookies disabled nowadays? :confused:
  11. Forsaken

    Forsaken Well-Known Member

    I do because I'm a conspiracy theorist :rolleyes:.
    whynot likes this.
  12. whynot

    whynot Well-Known Member

    I'm not searching-asking.
    I know that a few sites' cookies are disabled in my browser.
    If I bought XF, in my users browsers they could be disabled fully.
    Which actually means that they would not be my forum's users.

    No users,I would not need XF at all.
  13. dutchbb

    dutchbb Well-Known Member

    This would be nice, if possible of course. Cookies will also fail to work if the user has nog space left on their cookies folder (which happens sometimes).

    An informational message like 'please make sure your browser accepts cookies and there is enough space left to save them' would help.
  14. Brogan

    Brogan XenForo Moderator Staff Member

    Can you also confirm whether I can remove my foil hat? :D
    Forsaken likes this.
  15. whynot

    whynot Well-Known Member

    You can,don't worry,XF protects you,they know what's good for you.
  16. Forsaken

    Forsaken Well-Known Member

    Theres this thing called private tabs/private window/privacy browsing/what have you in modern browsers (In most cases), and it does wonders. Basically, it allows you to go stealth, just like an Internet Ninja!

    Cookieless browsing adds little in the way of security :).
  17. Ryan

    Ryan Well-Known Member

    I'm okay with requiring cookies, but there definitely needs to be some sort of notification/error message instructing the user to enable cookies when they try to login and they are disabled...Without that, mass confusion ensues
    ManagerJosh and Forsaken like this.
  18. Forsaken

    Forsaken Well-Known Member

    I agree there needs to be a notification at least.
  19. whynot

    whynot Well-Known Member

    Sites infected with "Cleaners" such as "System Security" can repeatedly try to scan your computer.
    Disable cookies and they don't return.

Share This Page