Django session doesn't work in Chrome Incognito mode
I have 3 views like this:
def download_file(request, doc):
if not request.session.get('is_authenticated'):
return redirect(f"{reverse('pingfed_auth')}?next={request.get_full_path()}")
return downloadfile(doc)
def pingfed_auth(request):
original_url = request.GET.get('next') or 'home'
request.session['original_url'] = original_url
return redirect('Some third party authentication')
def redirect_pingfed_auth(request):
if request.method == 'POST':
request.session['is_authenticated'] = True
request.session['username'] = get_username_from_saml(request.POST.get('SAMLResponse'))
return redirect(request.session['original_url'] if 'original_url' in request.session else 'home')
Where pingfed_auth start the authentication and redirect_pingfed_auth is the callback URL from that thrid-party authentication. However, the session doesn't work in chrome Incognito mode. I can't see any session from browser console, and I can't get redirect correctly. But I do see the session is stored properly in the database. Is that because Incognito mode block the session after redirect to third party site or something else?
In incognito mode it blocks third-party cookies if your authentication flow relies on cookies that are considered "third-party" that is - ( cookies set by domains other than your own during the authentication process), these cookies may be blocked. This can result in the session not being recognized after the redirect back from the third-party authentication provider.
- Django column "name" of relation "django_content_type" does not exist
- Django CSRF check failing with an Ajax POST request
- how to pass csrf_token to javascript file in django?
- Django Celery Redis
- How to properly make a signup view with django
- Sphinx Readthedocs theme Font-awesome integration
- Where to place a sitemap.xml file in my django project?
- Django MultipleChoiceField not sending valid data in POST
- Add PRIMARY KEY constraint to existing table
- why do we need to restart apache after changing some file in django project
- rendering template with csrf token and template context
- Are consecutive django model save calls safe?
- How to use AssertRaisesMessage() in Django tests
- Using a settings file other than settings.py in Django
- Variable subtraction in django templates
- Django - Can a crispy form be split into 2 columns?
- How do I override my SvelteKit CSRF token to match my Django backend's CSRF token?
- Django does not reset module variables during multiple requests
- Why does django create a migration file when we change the storage attribute of FileField, when the storage type is not stored in the database?
- Single view for multiple paths via URL kwargs
- How to make group by in django ORM
- Custom Link on Column
- Django: related_name issue
- Django: create Index: non-unique, multiple column
- django InlineFormsets errors reporting with formset error list being empty
- Django url routing with flatpages
- Django: Get previous value in clean() method
- Django - dynamically update a count model field when related objects are added or removed
- Why does the getattr(ClassInstance, "http_method_names", []) function in django APIView return all http methods even though only GET is implemented?
- Django how to check whether a model is being created created or update