Some versions of IE, on some versions of Windows, have stricter policies regarding 3rd party content served through an iframe. Confusingly, the same browser (IE8 for example) will behave differently on different Win versions: some will allow session cookies, and some won't. You know you've been nobbled when you see the evil eye at the bottom of the browser with a red sign on it.
The way round this is to send a P3P header with a compact privacy policy in your iframed content:
class ApplicationController < ActionController::Base ... before_filter :set_p3p ... private # for IE session cookies thru iframe def set_p3p headers['P3P'] = 'CP="ALL DSP COR CURa ADMa DEVa OUR IND COM NAV"' end end
Thanks, helpful.
ReplyDeleteYou just made my day! Thank you!
ReplyDeleteVery thank you! Simple and functional.
ReplyDeletethx
ReplyDeleteOMG! My week just got a lot better :D
ReplyDeleteMany thanks from the Netherlands!
just saved my life :D
ReplyDelete