On 02 Oct 2009, at 09:49, heimdull wrote: > You will have to use a database session store. The default with rails > is a cookie based session store which is stored in the browser. > http://guides.rubyonrails.org/action_controller_overview.html > chapter 4 - sessions
That won't help, since the session id is still managed through cookies. You might check out http://github.com/tatyree/cookieless_sessions/ However, cookieless sessions (where the session id is passed on through parameters is generally a bad idea and poses a very big security risk (users can post a url with the session part included). Best regards Peter De Berdt --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en -~----------~----~----~----~------~----~------~--~---
