On Sun, Apr 17, 2011 at 11:02 PM, Greg Skerman <[email protected]> wrote: > Thanks guys, that makes sense... > Wasn't entirely sure if sessions were the way to go or not... > > one question Cricket, if the token is in a long lived cookie, why write just > the token to the session? isn't checking both a little redundant? that is > the token itself, not the rest of the data stored in the session...
No, because they each serve different purposes. Better, I think, to check the session between page requests, and the CartToken cookie between vists. At checkout time, you'd delete the CartToken cookie. You'd also probably add some flag to the carts table once its been paid for. -- Our newest site for the community: CakePHP Video Tutorials http://tv.cakephp.org Check out the new CakePHP Questions site http://ask.cakephp.org and help others with their CakePHP related questions. To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/cake-php
