Problem: In IE browser, domain name a uses IFRAME to post login information to the CAS server with Domain Name B, after debugging, it is found that the sessionid obtained by a for loginticket is inconsistent with the sessionid obtained after post. Only IE browser has this problem, Firefox Google browser is normal.
Cause: Query InformationThe p3p (Platform for privacy preferences Project (p3p) Specification) protocols supported by IE6 and IE7 prevent third parties from using cookies without privacy security claims by default. Firefox and Google do not currently support p3p security features, so they do not have this problem.
Solution: When obtaining loginticket for the first time, set the p3p declaration in response as follows:
Response. setheader ("p3p", "cp = Cura ADMA Deva psao psdo our bus uni pur int DEM sta pre com nav OTC Noi DSP cor ");