Reputation: 111
Cookie Manager of Apache JMeter doesn't add the cookie to POST request
I build up very simple test plan.
- Login: POST, a session cookie is returned.
- Get the state: GET, a user state is returned.
- Create a resource: POST, JSON body is supplied for the resource.
So my 'Test Plan' looks like:
- Test Plan
- Thread Group
- HTTP Request Defaults
- HTTP Cookie Manager
- Login (HTTP Request Sampler: POST)
- Get State (HTTP Request Sampler: GET)
- Create Resource (HTTP Request Sampler: POST)
- Thread Group
The cookie generated by 'Login' is added to 'Get State' correctly.
But 'Create Resource' has NO cookie. I changed their order but it doesn't help.
I used the default options firstly and changed some options but it also doesn't help.
Is it a bug of JMeter? or just POST http request is not able to have cookie?
Please give me any advice.
[SOLVED]
I noticed that it is related to the path, not the method.
You'd like to look at the domain of the cookie as well as the path.
I mean, the path and the domain of a cookie could be defined in the server side through Set-Cookie header.
Upvotes: 11
Views: 34446
Answers (2)
Reputation: 1302
I had this turned on in my Spring Boot server which was causing the issue with CookieManager in jMeter:
server.servlet.session.cookie.secure=true
Removing this made the cookies flow ! Of course this is for localhost. For Production you may need this turned on.
Upvotes: 0
Reputation: 607
Another solution is to set CookieManager.check.cookies=false in jmeter.properties usually sitting besides the jmeter startup script in bin.
JMeter for some reasons thinks that you can't set the path=/something in a cookie if you are on http:/somesite/somethingelse. That is the path has to match the path your currently on.
I've never seen a browser enforce this limitation if it actually exists. I've seen and written several sites that use this technique to set a secure cookie and then forward someone say to /admin.
I wish this option was at least in the GUI so I didn't have to change the properties file. I think BlazeMeter is smart enough to turn off checking where flood.io is not. If it were up to me I'd just remove the code that checks this entirely. Why make the load tester any harder then it needs to be.
Upvotes: 6
Related Questions
- I see no cookies in request body when ran using jmeter
- JMeter 5.4.1 Cookie Manager - User-Defined Cookie not added to request's cookies
- unable to add cookie in jmeter
- JMETER: Not able to add Cookie to request
- Jmeter cookie manager not passing cookies
- Jmeter: session expired when sending cookies via post request
- HTTP request - enable cookies is throwing 403 error code using JMeter
- JMeter Cookie Manager not sending / passing certain cookie
- Using cookie values in HTTP request post body with JMeter
- Jmeter using cookie manager issue