@
Channel One Einervonvielen had big problems connecting to the @
Deutschsprachige Nutzer forum. After a lot of thinking about why and testing, we found the following reasons:
1) He does not accept third party cookies.
2) His channel's primary home is zotid.net, but he was using a clone on friendicared.net when he was trying to access the forum.
3) So my server asked zotid.net for auth, where he wasn't logged in at that moment.
4) Visiting by zid redirected him to the profile, because the channel is restricted to anybody in this network. I don't know if there was a message about unsuccessful remote auth.
5) Trying to authenticate using the lock lead to FF detecting a redirection loop.
6) Everything worked when he tried from zotid.net
7) On a side note, when I (who accepts third party cookies) tried to authenticate on another server using the lock while I wasn't logged in at my server, simply nothing happened at all, I didn't get an error message or was asked to log in at my own server. Is that a bug? How is this supposed to work?
Some questions on that:
Is it possible to use clones for magic auth? (Meaning: Can the auth be done against a clone instead of the channel's primary home?) If yes, could the zid in zidified links be set to the address of the currently used clone? Will the other side then still be able to link everything to the primary address correctly?
We already know magic auth can't work correcttly without accepting thrid party cookies, at least for images in a stream. But isn't auth at a remote server done using redirects? Why does not accepting third party cookies hinder that? Or is it something else entirely?
Can such a redirect loop be detected and broken? Ideally with a message to the user that not accepting third party cookies is the problem (if it is)?
Is the same possible for images in the stream, i.e. finding out if the image is blocked because I don't have the rights to view it, or because that can't be found out because I block third party cookies, and showing a respective text/image that tells me what's going on?
Support Hubzilla
