On Aug 13, 10:59 pm, "Tomas R." <[email protected]> wrote: > i have some questions about sessions store, actually im using cookie > based authentication. But i need a way to know if someone is logged in > or not, so that's why i need DB store sessions, but my question is, is > the a way of making this sessions expire like cookies, or beeing > permanent as cookies? is it safer or less? > db store sessions are still backed by cookies (except that the cookie now contains the identifier for a database row) so the sessions will expire as a cookie based one would too. You can however forcefully expire sessions by deleting rows from your sessions table. You still won't be able to detect whether a user has lost their session by quitting their browser without logging out from within your app though.
Fred -- You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en.
