Re: Session Cookies
Re: Session Cookies
- Subject: Re: Session Cookies
- From: Gino Pacitti <email@hidden>
- Date: Sat, 06 Oct 2018 22:12:32 +0100
Yes there was no automatic session wosid being returned even though I was
accessing and creating the session in the direct action method.
I’m aware its because I am creating the WOResponse manually…
I therefore seem to be avoiding the apps response auto mechanism which adds the
cookies to the header. And because of that I think I just need to know how I
can nudge WO and get the one of the values, the woinst
I know how to get the wosid but not the woinst - I think that is from the
Adaptor so Im not sure how to access that to supply manually.
Gino
> On 6 Oct 2018, at 22:04, Aaron Rosenzweig <email@hidden> wrote:
>
> Hi Gino,
>
> Ah, I got a better idea of what you are driving at.
>
> Your first question is why don’t you see the automatic cookie that WO should
> provide? Well if typically you do have it but just not with this direct
> action… perhaps the direct action is session-less! maybe it never made a
> session!
>
> Now… about the JWT… we go session-less (on purpose) because we don’t want the
> user locked into a particular app instance. With JWT you have more
> flexibility and can be session less. You can also put some things in the
> payload of the JWT.
> AARON ROSENZWEIG / Chat 'n Bike <http://www.chatnbike.com/>
> e: email@hidden <mailto:email@hidden> t: (301) 956-2319
>
>
>
>> On Oct 6, 2018, at 4:57 PM, Gino Pacitti <email@hidden
>> <mailto:email@hidden>> wrote:
>>
>> Yes I have the path set already but there was no automatic creation of the
>> session cookie. I do have the session flags set for cookie session ID and in
>> the Direct action accessing the session. So the session is being created but
>> no sessionID returned in the headers?
>>
>> I will look at the JWT stuff though…
>>
>> Gino
>>
>>> On 6 Oct 2018, at 21:55, Aaron Rosenzweig <email@hidden
>>> <mailto:email@hidden>> wrote:
>>>
>>> Hi Gino,
>>>
>>> Set a path of “/“ for your cookies. Make sure it is available to all within
>>> the same top level domain.
>>>
>>> You might consider JWT (JSON web tokens) to jump back and forth with your
>>> staticly served but dynamic javascript app.
>>>
>>>
>>> AARON ROSENZWEIG / Chat 'n Bike <http://www.chatnbike.com/>
>>> e: email@hidden <mailto:email@hidden> t: (301) 956-2319
>>>
>>>
>>>
>>>> On Oct 6, 2018, at 4:35 PM, Gino Pacitti <email@hidden
>>>> <mailto:email@hidden>> wrote:
>>>>
>>>> Well thanks… Jesse
>>>>
>>>> Unfortunately I am returning a JSON response and so I need something that
>>>> is actually going to give me back a new session ID and the correct
>>>> Instance ID so that the browser sets them from that response.
>>>>
>>>> Thanks anyway…
>>>>
>>>> Gino
>>>>
>>>>> On 6 Oct 2018, at 21:27, Jesse Tayler <email@hidden
>>>>> <mailto:email@hidden>> wrote:
>>>>>
>>>>> I have no idea what you’re really asking here, but you need to put data
>>>>> into hidden text fields if you want to take those values from the request
>>>>>
>>>>>
>>>>>
>>>>>> On Oct 6, 2018, at 4:22 PM, Gino Pacitti <email@hidden
>>>>>> <mailto:email@hidden>> wrote:
>>>>>>
>>>>>> Hi Anyone
>>>>>>
>>>>>> I’m working on an app that needs a javascript fetch to set a value in
>>>>>> the session but it is coming from a static HTML page outside the app.
>>>>>>
>>>>>> I need to have the session ID and Instance number to be returned and set
>>>>>> on the browser… Is there a method I can call in my DirectAction that
>>>>>> will set the headers in the AJAX response so the client will have them
>>>>>> for the next request I make from that browser window?
>>>>>>
>>>>>> The current set up creates a new WOResponse where I am setting headers
>>>>>> but I do not just want to manually create the cookie...
>>>>>>
>>>>>> Thanks in advance
>>>>>>
>>>>>> Gino
>>>>>> _______________________________________________
>>>>>> Do not post admin requests to the list. They will be ignored.
>>>>>> Webobjects-dev mailing list (email@hidden
>>>>>> <mailto:email@hidden>)
>>>>>> Help/Unsubscribe/Update your Subscription:
>>>>>>
>>>>>>
>>>>>> This email sent to email@hidden <mailto:email@hidden>
>>>>>
>>>>
>>>> _______________________________________________
>>>> Do not post admin requests to the list. They will be ignored.
>>>> Webobjects-dev mailing list (email@hidden
>>>> <mailto:email@hidden>)
>>>> Help/Unsubscribe/Update your Subscription:
>>>>
>>>>
>>>> This email sent to email@hidden <mailto:email@hidden>
>>>
>>
>> _______________________________________________
>> Do not post admin requests to the list. They will be ignored.
>> Webobjects-dev mailing list (email@hidden
>> <mailto:email@hidden>)
>> Help/Unsubscribe/Update your Subscription:
>>
>> This email sent to email@hidden
>
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden