Chrome/Firefox lost some cookie

huakaibird nginx-forum at nginx.us
Fri Nov 6 03:52:24 UTC 2015 

Hi,

I have one strange issue:

I use nginx 1.8.0 on CentOS 7.1, found that some cookie will lost on
chrome/firefox, but IE works, and one of my nginx works
these nginx's configurations are same 

This is cookie copy from chrome, it lost _zm_sid cookie, response has the
cookie  (which is secure and http only)

Request             Cookies					500				
PRUM_EPISODES	     
s=1446776564844&r=https%3A//10.10.101.31/signin	N/A	N/A	N/A	61				
__ar_v4	           
DV47DVTZ4NHJNM5BVKACVM%3A20151106%3A23%7CMNBMU5UBV5A6DJOSTXTI32%3A20151106%3A23%7CFYTZRQUEVVGS7EWCIOE64A%3A20151106%3A23	N/A	N/A	N/A	130				
__qca	              P0-1693026123-1446769914724	N/A	N/A	N/A	35				
__zlcmid	          XZf57JMul1Jhtw	N/A	N/A	N/A	25				
_bizo_bzid	        cf545ade-f8f3-4815-9837-cbdd1f802497	N/A	N/A	N/A	49				
_bizo_cksm	        527A3CEFBCE90A8A	N/A	N/A	N/A	29				
_bizo_np_stats	    14%3D530%2C	N/A	N/A	N/A	28				
_ga	                GA1.1.1717735130.1446768974	N/A	N/A	N/A	33				
_zm_bu	            https%3A%2F%2F10.10.101.31%2Fmeeting	N/A	N/A	N/A	45				
cred	              9B4823D72A1F7FD05F58E2A1A0F20221	N/A	N/A	N/A	39				
visitor_id84442	    25513943	N/A	N/A	N/A	26		


		
Response            Cookies					95				
_zm_sid	            
PinjHTI6Th-jv1c_pPO9Ug		/	2015-11-06T04:22:41.000Z	95	?	?


My nginx configuration:

ssl_session_cache   shared:SSL:10m;
ssl_session_timeout 30m;
upstream backend {
       
        server x.x.x.x;
       
  
	
}


server {
    listen       80;
    listen       443 ssl;
     location / {
        proxy_pass http://backend;
    }
    keepalive_timeout   70;
    proxy_set_header Host $host;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header X-Forwarded-Proto $scheme;
    proxy_buffers 128 16k;
    client_body_buffer_size 2048k;
    underscores_in_headers on;
    ssl_certificate     ssl/chained.crt;
    #ssl_certificate     ssl/4582cfef411bb.crt;
    ssl_certificate_key ssl/xxx20140410.key;
    ssl_protocols       TLSv1 TLSv1.1 TLSv1.2;
    #ssl_ciphers           HIGH:!aNULL:!MD5;
    ssl_ciphers
'ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-DSS-AES128-GCM-SHA256:kEDH+AESGCM:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA:ECDHE-ECDSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-DSS-AES128-SHA256:DHE-RSA-AES256-SHA256:DHE-DSS-AES256-SHA:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:AES:CAMELLIA:DES-CBC3-SHA:!aNULL:!eNULL:!EXPORT:!DES:!RC4:!MD5:!PSK:!aECDH:!EDH-DSS-DES-CBC3-SHA:!EDH-RSA-DES-CBC3-SHA:!KRB5-DES-CBC3-SHA';
    ssl_prefer_server_ciphers on;
    ssl_dhparam         ssl/dhparams.pem;
}

Posted at Nginx Forum: https://forum.nginx.org/read.php?2,262628,262628#msg-262628

More information about the nginx mailing list