On Mon, Oct 15, 2007 at 09:16:14AM +0100, Ash Berlin wrote: > > I'm toying with using a ticket based authentication where the token > > would be sent in the XMLRPC request body, but use the existing > > (cookie-based) session setup that that application uses. > > > > Using cookies for XMLRPC is considered bad form - most clients that talk > to XMLRPC wont have a cookie jar.
Just to be clear, the paragraph above is about *not* using cookies for the XMLRPC request. -- Bill Moseley [EMAIL PROTECTED] _______________________________________________ List: Catalyst@lists.scsys.co.uk Listinfo: http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/catalyst Searchable archive: http://www.mail-archive.com/[EMAIL PROTECTED]/ Dev site: http://dev.catalyst.perl.org/