- From: Danny Ayers <danny@isacat.net>
- Date: Sun, 19 Aug 2001 13:43:06 +0100
- To: <frederik.deweerdt@rd.francetelecom.com>, "Naresh Jain" <narej@microsoft.com>, <www-talk@w3.org>
>If you don't use cookies, how is your session information going to be >identified ? I'm pretty sure that PHP, JSP and so on rely on cookies >for session identification. URL rewriting is the other usual approach. I'm not sure about PHP but it is certainly common practice with JSP. It has the major advantage that it still works if the browser doesn't support cookies or the user has them turned off. >To be precise there might be another solution. It would be to add an >extra header to your HTTP header. This as the advantage to be >invisible to the user (ie. no cookie blocking problem). >But it also as its drawback : you will have to implement the >session<->box association by your own (ie. you will have to >modify an existing product). I don't think I quite know what you mean here - using a modified version of http? Cheers, Danny.
Received on Sunday, 19 August 2001 07:45:16 UTC