(Created page with 'As of CKFinder 2.1 we have introduced new Flash component for multiple file upload. It is working great except in one situation. When, in CKFinder, you use your own authenticatio…') |
(No difference)
|
Revision as of 19:48, 13 September 2011
As of CKFinder 2.1 we have introduced new Flash component for multiple file upload. It is working great except in one situation. When, in CKFinder, you use your own authentication method (you have overridden checkAuthentication()
method), based on some variable placed in a session scope, you might see the following error, in browsers other than IE, while trying to upload images: "The file browser is disabled for security reasons. Please contact your system administrator and check the CKFinder configuration file".
This is happening because of some old Flash "cookie bug". If you are interested in seeing reports on this issue you can follow the below links (login is required):
- http://bugs.adobe.com/jira/browse/FP-1044
- https://bugs.adobe.com/jira/browse/FP-201
- http://bugs.adobe.com/jira/browse/FP-78
Now to give you some basic view on the problem. As you probably know browser has cookie space which is used to store cookies which are used to communicate with server. When Flash component (embedded in to web page) is being initialized it creates it’s own separate cookie space in non-IE browsers from which unfortunately wrong or no cookies are sent. If the correct cookies are not sent, than, as you already know, sessions and cookie based authentication will not work.