When I first read the question between new nodes, I thought: " Jeez, this is easy one, even acolyte as myself can answer it and help fellow monk". So I did.
Sure enough, my answer should be: "Please read CGI::Cookie while more experienced monks will answer with more detailed insight".
I am guilty being not enough patient and humble about my beginner's perls skills.
But my answer was not completely wasted, it prompted you to write this more detailed insight as compared with my (too) simple solution proposed.
I discussed similar issue with colleagues, so I should be aware that cookie will not final solution. We decided not to use cookie at all, because for some unknown reason some users do not want to accept cookie - or at least pretend not to accept cookie when asked about it. So we have login/password combination, which will create session, and sessionID we will pass to every form page instead of userID. This should allow to identify users/sessions even without cookies and with unlimited amount of protected information. We also wanted to prevent users to use bookmarks instead of proper login. Still we need session to expire - we'll do it on server side.
Does it make sense?
pmas
In reply to Re: Session identification (was: Game).
by pmas
in thread Game.
by Anonymous Monk
| For: | Use: | ||
| & | & | ||
| < | < | ||
| > | > | ||
| [ | [ | ||
| ] | ] |