On Mon, Oct 20, 2008 at 9:24 AM, Michael Gorven <[EMAIL PROTECTED]> wrote: > Hi > > My application needs to work with user agents which don't support cookies, and > I also require sessions. The current session implementation can only use > cookies to store the session ID. > > The attached patch adds support for sessions without using cookies. It does > this by adding a hidden input field to forms and a query parameter to links > containing the session ID, and then checking web.input() for the ID. This is > disabled by default with the config option 'cookieless', and requires > BeautifulSoup[1] to modify the output. (I'm happy to replace BeautifulSoup > with another parser if necessary.) > > Michael > > [1] http://www.crummy.com/software/BeautifulSoup/ > > -- > http://michael.gorven.za.net > PGP Key ID 6612FE85 > S/MIME Key ID 91E03AF1 >
hi, for kicks, i went the opposite direction and make a signed session-based store. http://paste.pocoo.org/show/88612/ usage is same as for the other datastores: http://paste.pocoo.org/show/88613/ it's signed, and gives an error if the cookie has been messed with. there's probably a reason why it's not wise to do this... but it's a nice lite option. -brentp --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "web.py" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/webpy?hl=en -~----------~----~----~----~------~----~------~--~---
