isn't this very insecure (passing the sessionId via URL)?
AFAIK: the URL is always readable (even if you use SSL) and thus it
would be very easy to intrude the users session
On Nov 29, 3:52 am, Joe Cole [EMAIL PROTECTED] wrote:
You could just change the request urls:
You could just change the request urls:
target.setServiceEntryPoint(GWT.getModuleBaseURL() + / + service
+;sessionid=+sessionId);
I haven't tried it, but assume it would work. You would have to pull
out the appropriate information on the server side.
Joe
On Nov 28, 5:35 am, seb2nim [EMAIL
Hi everyone.
I was playing with cookie and session and i found i cant open two
different tabs on firefox with twice the same app... so i think i'm
doing something wrong : I was thinking there would be two different
httpSessions but apparently not.
the problem is i actually keep some user
