Re: Session Cookies
Re: Session Cookies
- Subject: Re: Session Cookies
- From: Aaron Rosenzweig <email@hidden>
- Date: Sat, 06 Oct 2018 17:04:59 -0400
Hi Gino,
Ah, I got a better idea of what you are driving at.
Your first question is why don’t you see the automatic cookie that WO should
provide? Well if typically you do have it but just not with this direct action…
perhaps the direct action is session-less! maybe it never made a session!
Now… about the JWT… we go session-less (on purpose) because we don’t want the
user locked into a particular app instance. With JWT you have more flexibility
and can be session less. You can also put some things in the payload of the JWT.
AARON ROSENZWEIG / Chat 'n Bike <http://www.chatnbike.com/>
e: email@hidden <mailto:email@hidden> t: (301) 956-2319
> On Oct 6, 2018, at 4:57 PM, Gino Pacitti <email@hidden> wrote:
>
> Yes I have the path set already but there was no automatic creation of the
> session cookie. I do have the session flags set for cookie session ID and in
> the Direct action accessing the session. So the session is being created but
> no sessionID returned in the headers?
>
> I will look at the JWT stuff though…
>
> Gino
>
>> On 6 Oct 2018, at 21:55, Aaron Rosenzweig <email@hidden
>> <mailto:email@hidden>> wrote:
>>
>> Hi Gino,
>>
>> Set a path of “/“ for your cookies. Make sure it is available to all within
>> the same top level domain.
>>
>> You might consider JWT (JSON web tokens) to jump back and forth with your
>> staticly served but dynamic javascript app.
>>
>>
>> AARON ROSENZWEIG / Chat 'n Bike <http://www.chatnbike.com/>
>> e: email@hidden <mailto:email@hidden> t: (301) 956-2319
>>
>>
>>
>>> On Oct 6, 2018, at 4:35 PM, Gino Pacitti <email@hidden
>>> <mailto:email@hidden>> wrote:
>>>
>>> Well thanks… Jesse
>>>
>>> Unfortunately I am returning a JSON response and so I need something that
>>> is actually going to give me back a new session ID and the correct Instance
>>> ID so that the browser sets them from that response.
>>>
>>> Thanks anyway…
>>>
>>> Gino
>>>
>>>> On 6 Oct 2018, at 21:27, Jesse Tayler <email@hidden
>>>> <mailto:email@hidden>> wrote:
>>>>
>>>> I have no idea what you’re really asking here, but you need to put data
>>>> into hidden text fields if you want to take those values from the request
>>>>
>>>>
>>>>
>>>>> On Oct 6, 2018, at 4:22 PM, Gino Pacitti <email@hidden
>>>>> <mailto:email@hidden>> wrote:
>>>>>
>>>>> Hi Anyone
>>>>>
>>>>> I’m working on an app that needs a javascript fetch to set a value in the
>>>>> session but it is coming from a static HTML page outside the app.
>>>>>
>>>>> I need to have the session ID and Instance number to be returned and set
>>>>> on the browser… Is there a method I can call in my DirectAction that will
>>>>> set the headers in the AJAX response so the client will have them for the
>>>>> next request I make from that browser window?
>>>>>
>>>>> The current set up creates a new WOResponse where I am setting headers
>>>>> but I do not just want to manually create the cookie...
>>>>>
>>>>> Thanks in advance
>>>>>
>>>>> Gino
>>>>> _______________________________________________
>>>>> Do not post admin requests to the list. They will be ignored.
>>>>> Webobjects-dev mailing list (email@hidden
>>>>> <mailto:email@hidden>)
>>>>> Help/Unsubscribe/Update your Subscription:
>>>>>
>>>>>
>>>>> This email sent to email@hidden <mailto:email@hidden>
>>>>
>>>
>>> _______________________________________________
>>> Do not post admin requests to the list. They will be ignored.
>>> Webobjects-dev mailing list (email@hidden
>>> <mailto:email@hidden>)
>>> Help/Unsubscribe/Update your Subscription:
>>>
>>>
>>> This email sent to email@hidden <mailto:email@hidden>
>>
>
> _______________________________________________
> Do not post admin requests to the list. They will be ignored.
> Webobjects-dev mailing list (email@hidden)
> Help/Unsubscribe/Update your Subscription:
>
> This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden