Hi navjot, My clients doesnt want me to use cookies....So that my application should run even for users who have disabled cookies...The problem with url-rewriting is that jsessionid is maintained across applications so that if any one get url of the application they can go through the application from any corner of the world[where as the expected behaviour is session time out error]...Any suggestions for this problem??? Thanks Prashanth
Navjot Singh <[EMAIL PROTECTED]> wrote: here is the clue. cookies are again of two types. + persistent - will remain there even if you close browser and opens next day. + non-persistent/session - the moment you close browser window they are gone. These also work only under child browser windows. So, i assume you are looking for session cookies. If you love URL rewriting, you can disable the user session after 10 minutes of inactivity. Depends on how much pain would you like to take for it and how secure you wish your application to be. HTH Navjot Singh > >Hi navjot, >Thanks for the reply...But the problem with url rewriting is that >jsessionid is maintained across browsers so that users can access >the application if they get the url..[even on other system the >application work if u get the url]..so is there any other option??? >Thanks >Prashanth > > >Navjot Singh wrote: >theoretcially, there are 3 ways. > >1. URL Rewriting >2. Client side Cookies >3. Server side Session (again use cookies but just for an ID) > >if you are adamant about not using cookies at any level. URL rewriting is >the only option left. > >any other? >navjot singh > >>-----Original Message----- >>From: Prashanth.S [mailto:[EMAIL PROTECTED] >>Sent: Wednesday, October 08, 2003 1:30 PM >>To: [EMAIL PROTECTED] >>Subject: urlrewriting Vs Cookies >> >> >>Hi all, >>i want to know that among urlrewriting and cookies,which one is >>better???If i dont want to use cookies is there any otherway to do >>session invalidation[other than url rewriting]..Iam using resin. >>Thanks >>Prashanth >> >> >> >> >>--------------------------------- >>Do you Yahoo!? >>The New Yahoo! Shopping - with improved product search > > >--------------------------------------------------------------------- >To unsubscribe, e-mail: [EMAIL PROTECTED] >For additional commands, e-mail: [EMAIL PROTECTED] > > >--------------------------------- >Do you Yahoo!? >The New Yahoo! Shopping - with improved product search --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] --------------------------------- Do you Yahoo!? The New Yahoo! Shopping - with improved product search
