Comments (7)
mcdurdin
commented on August 23, 2024
1
We do not use ARR at present -- and are completely stateless should be able to disable it per https://azure.microsoft.com/en-us/blog/disabling-arrs-instance-affinity-in-windows-azure-web-sites/
We can move this issue to api.keyman.com to be addressed there.
from api.keyman.com.
jahorton
commented on August 23, 2024
1
a link to the site where this was happening.
I believe this was happening for in-repo pages under web/testing. I'm not 100% sure on whether it involved localhost mode or file:/// mode, but it was reported for one of those two hosting patterns for pages.
from api.keyman.com.
jahorton
commented on August 23, 2024
This cookie exists on the JS returned by KMW's API calls. If one visits one of the links produced for an API query (example), then enters document.cookie into the developer mode console...
In this context, that cookie may be considered "same-site". Chrome raises no issues here. However, for KMW installations that aren't within the .keyman.com set of domains... that's where this becomes an issue, as the JS (with this cookie) is loaded and run via <script> tag on KMW's host page.
KMW itself doesn't need that cookie... so we can probably go with same-site only. My current question - where is that cookie coming from?
from api.keyman.com.
jahorton
commented on August 23, 2024
Inspecting via the Headers tab...
Based on this:
Lines 61 to 82 in 5aeb41b
it would appear that this file would be the correct place to look. Except that a search op on that file doesn't bring up anything for either "header" or "_ga".
Then again, this is in the request header... from a raw query to that API endpoint. Just to be safe, I decided to load up the link in a completely fresh browser that had never followed it. (Opera, since I very recently downloaded it for something else.) No cookie was reported there... so maybe the original cause has already been fixed? That'd imply that the reason I still see the issues in Chrome is due to a 'never time out' setting when the cookie had been in active use.
Except that then visiting one of KMW's testing pages, within that browser, shows that there is one being set against .api.keyman.com, and it also produces those 4 requests.
Actually, upon re-examination, I can find that header information from the testing page (instead of through the direct query call), and there I see:
A couple of web searches later, and... https://stackoverflow.com/questions/50741024/does-arraffinity-cookie-always-set-on-azure-web-application
Looks like it's something being set by our hosting servers.
from api.keyman.com.
jahorton
commented on August 23, 2024
Also worth notice: Chrome is now actively blocking these cookies for KMW's host page... and everything's working fine, without any targeted changes from us. That said, anyone making API calls against our servers will likely be seeing similar issue reports.
from api.keyman.com.
mcdurdin
commented on August 23, 2024
_ga is Google Analytics
from api.keyman.com.
mcdurdin
commented on August 23, 2024
I no longer see this occurring. It would be helpful to have a repro for these kinds of issues -- e.g. a link to the site where this was happening.
from api.keyman.com.
Related Issues (20)
- .keyman-touch-layout files appear to have no json schema (should be on api.keyman.com) HOT 1
- Performance improvements for keyboard search (and related) HOT 1
- Consider showing localized names for languages in keyboard search
- Finish keyboard install page (aka universal link infrastructure) for macOS,Android,iOS HOT 2
- https://keyman-staging.com/keyboards/nw_iranian_latin should show "(Latin)" script for Gilaki language because the default script for Gilaki is Arabic. HOT 1
- bug: Search for `el` gives stats for 31 results but only returns 12 unless obsolete=1 is set
- chore: database build needs to be async HOT 2
- chore: See if we can build database faster with bcp HOT 1
- chore: Simple api to return current database build and tier
- bug: keyboard_info has wrong last update date
- bug: `Warning: mkdir(): File exists` on database build HOT 2
- bug: error building ISO639-3 data HOT 1
- bug: Keyboard Search for "sil ipa" (sans quotes) returns 0 results
- bug(android): Unexpected installed language HOT 2
- bug: test failing with SQL Server failing to download
- bug: version api should not return new version for kmw until s.keyman.com is ready
- bug: keyboard catalog returning `[]` in some circumstances?
- bug: stop words prevent some keyboards searches from returning results HOT 1
- bug(search): Wrong bcp47 code when searching for "German" with embedded search HOT 6
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from api.keyman.com.