Reputation: 589
Django session lost due to calling another server via iframe
I have two development servers written with Python/Django - one API server(it's not solely an API server; it has UI and etc.), and another one is a demo app used to serve data by communicating to the API server. I invoke the demo app with iframe in the API server. After successfully getting response from the demo app, the original user session of the API server is lost(supposed to have two sessions -- one from the user of the API server, one from communication between the demo app and the API server).
Any idea what happened?
Upvotes: 0
Views: 806
Answers (1)
Reputation: 11259
If you are running both on the same server, the session cookie might be overwritten since they both expect a sessionid cookie. If a sessionid doesn't exist a new one is generated, so when you access the outer app, you get a sessionid cookie, and that gets passed to the iframe app which doesn't recognize it and generates a new one. Try giving each app it's own unique SESSION_COOKIE_NAME
Upvotes: 1
Related Questions
- Same-site iframes not able to connect in Django
- Django iframe: sessionkey being created every request
- How to allow Iframe to other website from Django Website?
- django Sessions are not maintaing in an iframe
- Not able to maintain login in iframe for django
- Django request's session consistency across different browsers
- How to use iframe in Django for Production?
- Django in iframe in IE, session data not saved/retrieved
- Using iframe for an application in external websites
- XmlHttpRequest from an iframe to site running Django fails