cURL / Mailing Lists / curl-users / Single Mail

curl-users

Re: Cookie problem with POST/HTTPS connection

From: Ralph Mitchell <rmitchell_at_eds.com>
Date: Wed, 10 Mar 2004 08:15:02 -0600

Daniel Stenberg wrote:

>On Wed, 10 Mar 2004, Paul Forsyth wrote:
>
>
>
>>I believe they only way to make this work is to somehow redirect the session
>>to worldpay before POSTing, which is, i believe, the way the browser works.
>>From my understanding of curl i don't think it can do this.
>>
>>Has anyone experienced a problem like this? Am i going about things in the
>>wrong way? Any help would be appreciated.
>>
>>
>
>Normally on most sites, this is done by first logging in on one page that then
>returns one or several cookies and then you do the submission of the data on
>second URL, using the previously set cookies.
>
>

And within any given session, the cookies should stay consistent - the
server may fiddle with the values, but only in a manner that is
consistent with keeping the session alive. Once you logout (or abandon
the session) the cookies should be invalidated.

The script equivalent of that behaviour would be to zap the cookie file
before the first call to curl, to make sure you always start fresh.
Then pass & save cookies on each curl call.

Ralph Mitchell
Received on 2004-03-10