Re: Storing Session ID in Cookie And Multiple Browser Windows
Re: Storing Session ID in Cookie And Multiple Browser Windows
- Subject: Re: Storing Session ID in Cookie And Multiple Browser Windows
- From: Michael Hast <email@hidden>
- Date: Thu, 12 Jan 2017 10:44:37 -0700
Hi Mark:
Your combination approach sounds like a good idea. Which classes did you
overwrite in order to achieve this?
Michael
On 1/12/17 10:12 AM, Morris, Mark wrote:
Hi,
We use a combination of the session ID in the URL plus a secure cookie that we manage ourselves to verify that the session hasn’t been hijacked. Don’t know if this is a viable option in your case, but it does allow multiple sessions.
Regards,
Mark
On Jan 12, 2017, at 10:34 AM, Samuel Pelletier <email@hidden> wrote:
Hi,
Cookies are shared per browser instance so it is not possible to have distinct sessions inside a single browser. You can uses different browser and they will have their own sessions so if you need 2 simultaneous sessions, you can use a window in FireFox and Chrome for example.
WOComponent actions are not working well with multiple tabs or windows in the same session, the "You backtracked to far" will always come. I usually set the page cache very low like 2 so the user does not think it is supposed to works and get the error very early.
Samuel
Le 11 janv. 2017 à 21:42, Michael Hast <email@hidden> a écrit :
Hello:
We recently switch our applications to store the session ID in cookies. With the session ID in the URL we were able to open the same application in multiple browser tabs each working with their own session. Is that possible with cookies? We are not experiencing "You backtracked to far" every once in a while because each browser tab works with the same session.
Michael
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden