(keitai-l) Re: Losing Sessions on WAP servlet app

From: John Whelan <john.whelan_at_alatto.com>
Date: 05/27/05
Message-ID: <LBEGKPCPOAGEFNJMEDKAAEPFFKAA.john.whelan@alatto.com>
Thanks for the help on my query. Actually we have figured out that the
problem is due to using Tomcat app server. We switched to Orion and sessions
on those particular handsets (some Nokia and one Siemens) that were being
lost are now maintained.

John

www.alatto.com

-----Original Message-----
From: keitai-l-bounce@appelsiini.net
[mailto:keitai-l-bounce@appelsiini.net]On Behalf Of Curt Sampson
Sent: 26 May 2005 02:29
To: keitai-l@appelsiini.net
Subject: (keitai-l) Re: Losing Sessions on WAP servlet app


On Thu, 26 May 2005 necrodome@gmail.com wrote:

> why don't you try url rewriting for session management?

It's better to use cookies if you can:

     The bad part about using URL rewriting is that bookmarks and links
     that people send-around include the session ID, which can result in
     inadvertant session hijacking.

     http://www.keitai-dev.net/keitai-wiki?SessionHandling

BTW, there's some other useful stuff on the above page as well. I've got
some nice tricks for starting out with URL rewriting and dynamically
switching to cookies, if the browser will return them, that I should
really post there one day.

cjs
--
Curt Sampson  <cjs@cynic.net>   +81 90 7737 2974

***   Contribute to the Keitai Developers' Wiki!   ***
***        http://www.keitai-dev.net/wiki/         ***


This mail was sent to address john.whelan@alatto.com
Need archives? How to unsubscribe? http://www.appelsiini.net/keitai-l/
Received on Fri May 27 14:42:26 2005