in reply to Re: Session Security
in thread Session Security

I Retrieve the cookie like this: 
$_sessionid = cookie("sessionid");

[download]
I set it like this: (I'm using CGI's :standard) 
$_s_cookie = cookie (-name => "sessionid",
        -value => $sessionid,
        -expires => "+1y"
        );
print header(-cookie => $_s_cookie,
-P3P=>"policyref=/w3c/p3p.xml");

[download]

It worked for a while, then it just quit working for some reason. It also works sometimes with some of our users.

Then sometimes it does not work. Same pages, same coding.

Just a strange thing, that I don't understand. The cookie ONLY contains the session id. Nothing else.

thx,
Richard

Replies are listed 'Best First'.
Re: Re: Session Security
by The Mad Hatter (Priest) on Nov 20, 2003 at 03:41 UTC
    Try elminating the P3P policy and see if you still have the problem with cookies. I don't know much about P3P, but it probably isn't fully supported by all browsers. Do you really need it in the first place?
[reply]

In Section Seekers of Perl Wisdom