Re: Session IDs in Cookies
Re: Session IDs in Cookies
- Subject: Re: Session IDs in Cookies
- From: Mike Schrag <email@hidden>
- Date: Mon, 27 Apr 2009 16:03:21 -0400
no ... this was my con #1 for them
On Apr 27, 2009, at 3:59 PM, Ricardo J. Parada wrote:
If you use cookies, can you open two browser windows and connect to
the application as two separate sessions ?
On Apr 27, 2009, at 3:48 PM, Chuck Hill wrote:
Cookies, unless I have a compelling reason to not use them. It has
been years since I worked on an app that did not use cookies.
On Apr 27, 2009, at 12:14 PM, John Huss wrote:
So which do you guys typically use?
John
On Mon, Apr 27, 2009 at 1:43 PM, Chuck Hill <email@hidden
> wrote:
On Apr 27, 2009, at 11:39 AM, Mike Schrag wrote:
Pros of Cookies
1) stateful DA urls are bookmarkable without junk in them
2) people love to send eachother URLs and nothing sucks worse than
when they don't understand that it's a huge security risk to
include your session id
3) You can navigate back and forth between your app and static
pages and not lose your session
Cons of Cookies
1) opening multiple windows on your app is a lot more annoying
because they will share the same set of cookies (so you can't
easily login as two different people in dev mode)
2) if you have any issues with host names (you probably have other
problems if this is the case), you can lose your cookies if the
host name changes on you
On Apr 27, 2009, at 2:33 PM, Kieran Kelleher wrote:
What are the benefits of using SessionIDs in cookies over
WebObjects' default sessionID in URL strategy?
-Kieran
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
--
Chuck Hill Senior Consultant / VP Development
Come to WOWODC'09 in San Fran this June!
http://www.wocommunity.org/wowodc09/
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
--
Chuck Hill Senior Consultant / VP Development
Come to WOWODC'09 in San Fran this June!
http://www.wocommunity.org/wowodc09/
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden