2011/2/18 Brion Vibber <brion(a)pobox.com>om>:
* finding a way to set the cookies in only one place,
but be able to check
them directly from all domains (not sure this is possible)
I don't think so.
* finding a way to set the cookies in only one place,
but be able to check
them indirectly from all domains in a way that doesn't interfere much with
user activity (eg checking login state from JavaScript at start of page
load, then fixing up the local session in an automatic refresh)
This is possible with CORS, and I suggested it a while back, see
https://bugzilla.wikimedia.org/show_bug.cgi?id=20251#c8 . According to
Wikipedia the latest version of every major browser supports CORS,
except Opera and IE; IE has a barely usable proprietary interface to
CORS in XDomainRequest, which we may or may not be able to use for
this.
Roan Kattouw (Catrope)