473,503 Members | 1,864 Online
Bytes | Software Development & Data Engineering Community
+ Post

Home Posts Topics Members FAQ

session handling over HTTP

Hello

I'm biting into the following problem: HTTP is stateless protocol
and thus net languages' designer had to find out session. As
far as I know session handling in any of the language (PHP, JSP, ASP)
is one of the of the following:
- user's IP, but ambiguous
- using cookies, sometimes disregarded due to possibility of turning off
in a browser; no need to control flow of data, checking links
- controlling every link, the uses can follow, to add session ID; this
means putting session ID into any POST/GET request and is
very uncomfortable, if there is no platform support
- any other known ????

Fortunately PHP/JSP/ASP give transparent usage of session, but
in what a way exactly?

If they use POST/GET request, do they browse through the file
and add hidden field to forms and parameter to every link (querystring)?

I wonder because I'm writing simple HTTP server in Java, providing
session handling.

TIA,

Maciej

--
PLEASE NOTE: comp.infosystems.www.authoring.cgi is a
SELF-MODERATED newsgroup. aa.net and boutell.com are
NOT the originators of the articles and are NOT responsible
for their content.

HOW TO POST to comp.infosystems.www.authoring.cgi:
http://www.thinkspot.net/ciwac/howtopost.html

Aug 12 '05 #1
3 2003
news.onet.pl wrote:
Fortunately PHP/JSP/ASP give transparent usage of session, but
in what a way exactly? If they use POST/GET request, do they browse through the file
and add hidden field to forms and parameter to every link (querystring)?


PHP uses cookies, and rewrites all links and forms as a fallback if the
cookie isn't accepted.
--
David Dorward <http://blog.dorward.me.uk/> <http://dorward.me.uk/>
Home is where the ~/.bashrc is

--
PLEASE NOTE: comp.infosystems.www.authoring.cgi is a
SELF-MODERATED newsgroup. aa.net and boutell.com are
NOT the originators of the articles and are NOT responsible
for their content.

HOW TO POST to comp.infosystems.www.authoring.cgi:
http://www.thinkspot.net/ciwac/howtopost.html

Aug 12 '05 #2
news.onet.pl (dz******@wmid.amu.edu.pl) wrote:
: Hello

: I'm biting into the following problem: HTTP is stateless protocol
: and thus net languages' designer had to find out session. As
: far as I know session handling in any of the language (PHP, JSP, ASP)
: is one of the of the following:
: - user's IP, but ambiguous

I can't imagine this is ever used.

: - using cookies, sometimes disregarded due to possibility of turning off
: in a browser; no need to control flow of data, checking links
: - controlling every link, the uses can follow, to add session ID; this
: means putting session ID into any POST/GET request and is
: very uncomfortable, if there is no platform support
: - any other known ????

: Fortunately PHP/JSP/ASP give transparent usage of session, but
: in what a way exactly?

They use cookies if they can, and if not then some environments will do
url rewriting. I.e. the server monitors the URLS being sent to clients
and rewrites them to include a session id parameter.

: If they use POST/GET request, do they browse through the file
: and add hidden field to forms and parameter to every link (querystring)?

The server parses the data being sent and modifies some of the urls it
sees.

: I wonder because I'm writing simple HTTP server in Java, providing
: session handling.

Use cookies. It's simple, it works. If a user wants to login then they
will need to accept cookies. That is no different than (for example)
requiring a user to register on a site before they get to post. The user
either does what you ask and gets the functionality, or they choose to not
get the functionality - their choice.

Using cookies today wouldn't stop you from add url rewriting to your
server later on.
--

This space not for rent.

--
PLEASE NOTE: comp.infosystems.www.authoring.cgi is a
SELF-MODERATED newsgroup. aa.net and boutell.com are
NOT the originators of the articles and are NOT responsible
for their content.

HOW TO POST to comp.infosystems.www.authoring.cgi:
http://www.thinkspot.net/ciwac/howtopost.html

Aug 12 '05 #3
news.onet.pl wrote:
Hello

I'm biting into the following problem: HTTP is stateless protocol
and thus net languages' designer had to find out session. As
far as I know session handling in any of the language (PHP, JSP, ASP)
is one of the of the following:
- user's IP, but ambiguous
- using cookies, sometimes disregarded due to possibility of turning off
in a browser; no need to control flow of data, checking links
- controlling every link, the uses can follow, to add session ID; this
means putting session ID into any POST/GET request and is
very uncomfortable, if there is no platform support
- any other known ????

Fortunately PHP/JSP/ASP give transparent usage of session, but
in what a way exactly?

If they use POST/GET request, do they browse through the file
and add hidden field to forms and parameter to every link (querystring)?

I wonder because I'm writing simple HTTP server in Java, providing
session handling.

TIA,

Maciej

Perl gives you a choice of setting cookies, saving state to a local
file, or creating a self-refernecing URL that preserves state
information.. It is all handled easily and mostly transparentlyby the
module 'CGI.' If you have access to *nix, just do a 'man CGI' for lots
of details.

--
PLEASE NOTE: comp.infosystems.www.authoring.cgi is a
SELF-MODERATED newsgroup. aa.net and boutell.com are
NOT the originators of the articles and are NOT responsible
for their content.

HOW TO POST to comp.infosystems.www.authoring.cgi:
http://www.thinkspot.net/ciwac/howtopost.html

Aug 12 '05 #4

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics
6
3037
Easy web session module with Python?
by: Johnathan Doe | last post by:
Hi, I'm looking for an easy way to do web development with Python (session handling a-la ASP/JSP/PHP, that kind of thing). I've looked at PythonWeb.org but it has bugs because it's not tested on...
Python
3
1834
browser session handling
by: Richard P | last post by:
I am experiencing some browser weirdness. My app uses session state to hide values I prefer to keep out of the querystring. I am testing to see what happens when cookies are fully disabled in IE...
.NET Framework
9
2081
session security
by: Marcus | last post by:
Hello, Currently all of my php pages use SSL, not just my initial login. Originally I thought this would be more secure, but after thinking about things and looking at sites like Amazon and...
PHP
0
3937
Handling session timeout between asp and asp.net
by: TaeHo Yoo | last post by:
Hi all, I am prett new in asp.net. We have a project which has classic asp and asp.net scripts. Obviously this project has a bin directory under the root directory. About 80% of this project...
C# / C Sharp
1
2301
Session is lost during error handling
by: Oscar Thornell | last post by:
Hi, I have an ASP.NET page that generates an Exception... The Exception is not caught in the executing method...so it propagates to..the Page_Error event handling method.. In that method the...
ASP.NET
9
5291
User control remember state across pages without session
by: McGeeky | last post by:
Is there a way to get a user control to remember its state across pages? I have a standard page layout I use with a header and footer as user controls. Each page uses the same layout by means of...
ASP.NET
4
2186
Web Farms and session handling
by: John Allberg | last post by:
Hi! We have a problem which is correlated to web farms and session handling and are thinking of what solution to choose. Our setup is with a web farm, one ldap server and a database cluster. ...
ASP.NET
9
7777
Session handling, login across all subdomains
by: Josh | last post by:
I run a Joomla website and am familiar with php in some but not all aspects. Currently I am trying to find some solutions related to session handling. Am I correct in saying that "login" is kept...
PHP
7
1505
session handling
by: lak | last post by:
I want to study about the Session handling in PHP. I don't know where to start. So please suggest me some way.
PHP
0
7205
marktang
What is ONU?
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
General
0
7093
Changing the language in Windows 10
by: Hystou | last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
Windows Server
0
7287
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...
C / C++
0
7348
jinu1996
Maximizing Business Potential: The Nexus of Website Design and Digital Marketing
by: jinu1996 | last post by:
In today's digital age, having a compelling online presence is paramount for businesses aiming to thrive in a competitive landscape. At the heart of this digital strategy lies an intricately woven...
Online Marketing
0
7467
tracyyun
Discussion: How does Zigbee compare with other wireless protocols in smart home applications?
by: tracyyun | last post by:
Dear forum friends, With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
General
1
5021
isladogs
Access Europe - Using VBA to create a class based on a table - Wed 1 May
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome a new...
Microsoft Access / VBA
0
3166
Windows Forms - .Net 8.0
by: adsilva | last post by:
A Windows Forms form does not have the event Unload, like VB6. What one acts like?
Visual Basic .NET
0
1519
transfer the data from one system to another through ip address
by: 6302768590 | last post by:
Hai team i want code for transfer the data from one system to another through IP address by using C# our system has to for every 5mins then we have to update the data what the data is updated ...
C# / C Sharp
0
397
bsmnconsultancy
Comprehensive Guide to Website Development in Toronto: Expert Insights from BSMN Consultancy
by: bsmnconsultancy | last post by:
In today's digital era, a well-designed website is crucial for businesses looking to succeed. Whether you're a small business owner or a large corporation in Toronto, having a strong online presence...
General

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes
How to Post and Respond on Bytes
How to Promote and Link on Bytes
How to increase your Ranking on Bytes
Become a Recognized Expert on Bytes
Feedback Welcomed! Contact Us