• Toll-free  888-665-8637
  • International  +1 717-220-0012
Welcome Guest! To enable all features please Login or Register.

Notification

Icon
Error

MitchA
#1 Posted : Sunday, April 22, 2007 6:11:11 PM(UTC)
MitchA

Rank: Member

Joined: 3/3/2006(UTC)
Posts: 1,737

I loaded a product into my cart, and signed out abandoning the cart. I signed in as a new user by creating a brand new account. I added a product to the cart and proceeded to the checkout. Both products were in the cart.


Shouldn't the first cart have been cleared away when I signed out? I repeated this test twice, same result. Maybe a minor oversight, but it is a shopper's privacy issue.



I'm running a fresh SP2 final install.
Optimists invent airplanes,
Pessimists buy parachutes.
birdsafe
#2 Posted : Sunday, April 22, 2007 10:35:36 PM(UTC)
birdsafe

Rank: Member

Joined: 2/21/2007(UTC)
Posts: 1,113

Mitch,

If you are doing it on the same machine, is'nt the cart controlled by a cookie? If so, then it still would be in your cart, regardless of the sign in info.
MitchA
#3 Posted : Monday, April 23, 2007 8:11:01 AM(UTC)
MitchA

Rank: Member

Joined: 3/3/2006(UTC)
Posts: 1,737

True, nuf. But multiple users (like at a library or at work on a shared server) shouldn't have to clear their cookies. I would think at a change of users, the cookie should change or get wiped. I have to sign back in to see my past orders, but not what's in someone else's abandoned cart???.... Hmmmm.

Prompts one to wonder what else is getting deposited in the cookie for other users to find.
Optimists invent airplanes,
Pessimists buy parachutes.
Andy Miller
#4 Posted : Monday, April 23, 2007 1:44:05 PM(UTC)
Andy Miller

Rank: Member

Joined: 11/5/2003(UTC)
Posts: 2,136

Was thanked: 1 time(s) in 1 post(s)
What happens if you remove the Cart ID Cookie Name on BVAdmin > Options > Users?
Andy Miller
Structured Solutions

Shipper 3 - High Velocity Shipment Processing
MitchA
#5 Posted : Tuesday, April 24, 2007 8:11:33 AM(UTC)
MitchA

Rank: Member

Joined: 3/3/2006(UTC)
Posts: 1,737

Andy,

Test: I signed in as User1, loaded the cart and signed out - signed in as User2 and found User1's cart still full.


Also, the "Last item viewed" content block failed to clear.

I ran this after clearing the field for CartID, and again for UserID. Same results. Each new user signing in saw the contents of the previous shopper's cart.

I also unchecked "remember users" and still saw the abandoned products in the cart.
Optimists invent airplanes,
Pessimists buy parachutes.
Andy Miller
#6 Posted : Tuesday, April 24, 2007 11:47:19 AM(UTC)
Andy Miller

Rank: Member

Joined: 11/5/2003(UTC)
Posts: 2,136

Was thanked: 1 time(s) in 1 post(s)
Seems like a bug...or at least it does not match our expectations.
Andy Miller
Structured Solutions

Shipper 3 - High Velocity Shipment Processing
Kman
#7 Posted : Tuesday, April 24, 2007 12:09:36 PM(UTC)
Kman

Rank: Member

Joined: 11/25/2003(UTC)
Posts: 370

You would have to close your browser first most likely between your test.
Regards,
Kim(Kman) Rossey
www.toocoolwebs.com
BVSoftware - MerchantTribe Programming/Design, Database Programming and Business Applications
[email protected]
jetheredge
#8 Posted : Tuesday, April 24, 2007 4:05:46 PM(UTC)
jetheredge

Rank: Member

Joined: 3/1/2006(UTC)
Posts: 1,142

These are stored in cookie in the users browser. We could add an option later on to clear out these cookies when a user logs out. The reason why this was done in this way was is that we had complaints that users would lose their carts when they started a cart signed out and then logged in.

The issue gets more complicated if a user creates a cart logged in, then later logs out and creates a new cart and then signs in again. Which cart do we use? Do we merge them? What if they have different shipping/billing info on them?

So the easy fix was just to make the cart ignore the user. The problem is that if a user doesn't sign out, the cart will stay around even when they close the browser. If we decide to implement these features then every merchant will want it to work a different way, even though their way is the right way of course. :-)
Justin Etheredge
Senior Software Engineer
BVSoftware
MitchA
#9 Posted : Tuesday, April 24, 2007 4:19:38 PM(UTC)
MitchA

Rank: Member

Joined: 3/3/2006(UTC)
Posts: 1,737

There is way to do some things "right enough".

I'm OK with it, til I get an angry phone call from hubby shopping for a surprise B'day gift for the Mrs., and it looks like a (minor) security issue.

Let it go.
Optimists invent airplanes,
Pessimists buy parachutes.
Forum Jump  
You cannot post new topics in this forum.
You cannot reply to topics in this forum.
You cannot delete your posts in this forum.
You cannot edit your posts in this forum.
You cannot create polls in this forum.
You cannot vote in polls in this forum.

©2025 Develisys. All rights reserved.
  • Toll-free  888-665-8637
  • International  +1 717-220-0012