Lists

Terms and Conditions
Lists hosted on this site
Email the Postmaster
Tips for posting to public mailing lists

Re: Session IDs in Cookies

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Session IDs in Cookies

Subject: Re: Session IDs in Cookies
From: Mike Schrag <email@hidden>
Date: Mon, 27 Apr 2009 14:39:28 -0400

Pros of Cookies 1) stateful DA urls are bookmarkable without junk in them 2) people love to send eachother URLs and nothing sucks worse than when they don't understand that it's a huge security risk to include your session id

Cons of Cookies 1) opening multiple windows on your app is a lot more annoying because they will share the same set of cookies (so you can't easily login as two different people in dev mode) 2) if you have any issues with host names (you probably have other problems if this is the case), you can lose your cookies if the host name changes on you

On Apr 27, 2009, at 2:33 PM, Kieran Kelleher wrote:

What are the benefits of using SessionIDs in cookies over WebObjects' default sessionID in URL strategy?

-Kieran
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden

_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden


Follow-Ups:

Re: Session IDs in Cookies
From: Chuck Hill <email@hidden>


References:  
  >Session IDs in Cookies (From: Kieran Kelleher <email@hidden>)




Prev by Date:
Session IDs in Cookies

Next by Date:
Re: Session IDs in Cookies

Previous by thread:
Session IDs in Cookies

Next by thread:
Re: Session IDs in Cookies

Index(es):

Date
Thread