> > Recently, I have noticed several threads of discussion around session > >management and I want to present an alternate mechanism for managing a > >user's session. I have built a simple alternative to using cookies or URL > >re-writing that seems SO simple that there must be something wrong with it. > > The problem with any solution that presents alternative URLs to users > is that you get cross-session issues. Search engines will catalog > the site using their "session" url (different each time). Users will > click on those and use those "sessions". Sometimes users will > bookmark a site, some times they won't, and over time you'll end up > with N-to-N relationships between users and sessions. It's usable in > a situation where you explicitly login to a site, or where sessions > expire very quickly, but otherwise it gets pretty messy.
Embperl 1.3.4 will have something like this. It will give you the chance to use cookie based session id or URL based id's. It will even be possible that Embperl checks if cookies are supported and use URL based id only when cookies doesn't work. The main problem is, I don't have the time at the moment to finish it soon. Most of the code is written, but docs and tests are missing. Gerald --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
