Re: Session IDs in Cookies
Re: Session IDs in Cookies
- Subject: Re: Session IDs in Cookies
- From: Mike Schrag <email@hidden>
- Date: Mon, 27 Apr 2009 14:39:28 -0400
Pros of Cookies
1) stateful DA urls are bookmarkable without junk in them
2) people love to send eachother URLs and nothing sucks worse than
when they don't understand that it's a huge security risk to include
your session id
Cons of Cookies
1) opening multiple windows on your app is a lot more annoying because
they will share the same set of cookies (so you can't easily login as
two different people in dev mode)
2) if you have any issues with host names (you probably have other
problems if this is the case), you can lose your cookies if the host
name changes on you
On Apr 27, 2009, at 2:33 PM, Kieran Kelleher wrote:
What are the benefits of using SessionIDs in cookies over
WebObjects' default sessionID in URL strategy?
-Kieran
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden