Im working with Soap as Soap::Transport::HTTP::Daemon. Its pretty cool to be able to run a soap server with so little startup code. One of my requirements is that I authenticate a session before I permit access to any of the 'exposed' APIs. I accomplished this in Axis2/Apache/Tomcat using session variables and am wondering what the equivalent mechanism would be in Perl.

Ideally I would have the client call an authentication function which would validate the session. If an attempt was made to call a function without prior validation it wouldn't work. I was reading about HTTP::Cookies but don't understand it enough to know if its the technique Im looking for.

Suggestions?

EDIT: I see where Soap::Transport::HTTP::Daemon has a dependency on HTTP::Daemon - is there some way I can utilize the HTTP::Daemon::Threaded functions like 'session'?