Although I feel I am probably convinced not to use the cookie method, I have a query:
On 2 Aug 2009, at 14:48, Christoph Pojer wrote:
a) cookies can be disabled
I'm assuming you mean by the browser here. I know the browser can disable sending cookies, but what about just receiving them? Does a browser disabling cookies mean that JS in the page has no access to the cookies sent in the HTTP header from the server?
Michal.
