Hey Tero, Thanks for the reply. Really appreciate the tips. Brian
-----Original Message----- From: Paananen, Tero [mailto:[EMAIL PROTECTED] Sent: 20 August 2003 18:36 To: 'Struts Users Mailing List' Subject: RE: [OT] Shopping cart best practices - Cookie, HttpSession or DB > The options I have to implement the shopping cart: > > a) Cookies - satisfies 1 and 2, but assumes user > doesn't turn off > cookies > > b) HttpSession object - satisfies 1, but not 2 > > c) Database shopping cart object - satisfies 2, but not 1. > > I'd like to know, > > a) am I basically correct with these assumptions. > b) What would people recommend based on their experience. > c) any struts open source project that might have this? Use a combination of a), b) and c) :) Store an identifier to the shopping cart in session (security implications here...make sure you don't code an unsecure app), store the shopping cart itself in db, use session cookies (or URL rewriting) to identify, which session the user requests are associated to (this is done automatically by your servlet container). I'm sure you can do this in multiple ways, but that's how I would do it. -TPP ----------------------------------------- This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, retention, distribution or disclosure by others is strictly prohibited. If you are not the intended recipient (or authorized to receive for the recipient), please contact the sender by reply email and delete all copies of this message. Also, email is susceptible to data corruption, interception, tampering, unauthorized amendment and viruses. We only send and receive emails on the basis that we are not liable for any such corruption, interception, tampering, amendment or viruses or any consequence thereof. --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
