--- In [email protected], "Beau Scott" <[EMAIL PROTECTED]> wrote: > > Just a bit of advice regarding storing session information on the client > (flex) application: it is not secure.
Can you elaborate as to why storing info a Flex application is not secure? > However, if your Flex application is just a face to a web application and > you need access to the session variables for certain display issues, then > make a service request to retrieve what you need into your application. You > really shouldn't be sending session information up and down from the server Why not? It sounds to me like you are coming from the perspective that sessions are storing sensitive data; but I can envision many applications where that is not the case. For example, take a shopping cart (which seems to be a common example for web applications). In the "old world", you may create a session variable to be the shopping cart and store items that the user has added to the cart. Each cart item probably consists of a ProductID, a quantity, and perhaps a price. If you are building a Flex shopping cart, then it seems to make sense to store that information as variables in the Flex client instead of in session variables on a server. -- Jeffry Houser, Technical Entrepreneur, Software Developer, Author, Recording Engineer AIM: Reboog711 | Phone: 1-203-379-0773 -- My Company: <http://www.dot-com-it.com> My Podcast: <http://www.theflexshow.com> My Blog: <http://www.jeffryhouser.com>
