The session tag has no wiki summary.
0
votes
1answer
41 views
How to implement session state in a backend web application?
When using a non-MVC service-oriented/Interactor pattern approach to decoupled system architecture, how is session state implemented?
I've been thinking of building the frontend of an application ...
4
votes
6answers
410 views
HTTP Session or Database approach
I am confused a little as what should be my approach, Working on a design of shopping cart and i need to store shopping cart either in session or in database but not sure which approach would be ...
0
votes
4answers
174 views
How to avoid repetitively logging in to web site?
While developing web sites it can be annoying that I have to login to the site.
Every time the session runs out I have to go through a flow like...
Open logon page -> enter username/password -> click ...
0
votes
0answers
138 views
Connecting with OAuth, dealing with logout and browser sessions
I work on a open-source web application (Moodle) which connects to a number of external services such as Google Drive, Dropbox etc. to allow users to exchange files with these services.
Primarily we ...
2
votes
2answers
229 views
User session timeout handling in SaaS apps - discussing several approaches
I know this has a great chance of being marked as duplicate, but couldn't find exactly what I'm looking for
This is a common problem and I'm sure it has some well defined best practice solution
...
-2
votes
2answers
87 views
should F12's request headers show session id as cookie?
I'm trying to educate myself on potential web attacks. I just found a site (which will rename anonymous) where it shows me what looks to be like the php session id inside the cookies section of the ...
1
vote
4answers
667 views
Why can't WARs share session info?
I have seen several developers looking for a solution for this problem: accessing session information from a different WAR (even when inside the same EAR) - here are some samples: Any way to share ...
2
votes
1answer
313 views
Understanding HTTP Cookies in Indy 10 for Delphi XE2
I have been working with Indy 10 HTTP Servers / Clients lately in Delphi XE2, and I need to make sure I'm understanding session management correctly. In the server, I have a "bucket" of sessions, ...
3
votes
2answers
153 views
Are session aware Models a bad thing?
I'm thinking specifically in Rails here, but I suspect this is a wider question.
In a Rails web application I'm using data from the session in models in order that the models know who is logged in. I ...
2
votes
2answers
97 views
Results stored in a session - good idea?
To give a bit of background, lets say it's a generic results page, which is paginated so there are X results per page.
Generally to do this, I have two queries on the page:
to get the total number ...
3
votes
6answers
900 views
What is the most reliable session storage in PHP: Memcache, database or files?
What is the best and most safest way to handle PHP sessions. Is the best way to store sessions in:
Database (more reliable, but high bottleneck, slow speed, not good for high database usage ...
0
votes
0answers
183 views
How can I update the session id in a JSF application?
I am a beginner in web application development and right now I am developing a project in JSF with Glassfish server. During my security audit test, I found one high level error of session id hacking. ...
1
vote
4answers
174 views
Is restricting sessions to an absolute IP likely to have a wide impact on mobile networks?
Our website currently restricts a cookie-based session to the IP address that was originally sent the Set-Cookie HTTP header. In the past a user's IP would rarely change, so this didn't present much ...
1
vote
2answers
531 views
What are the best practices to use NHiberante sessions in asp.net (mvc/web api) ?
I have the following setup in my project:
public class WebApiApplication : System.Web.HttpApplication
{
public static ISessionFactory SessionFactory { get; private set; }
public ...
10
votes
1answer
277 views
Why popular websites store very complicated session related data in cookies — and what does it all mean?
As web developers, we all learn that sessions help overcome the problems related to the stateless nature of HTTP. We create a unique session id, and send it to the browser -- and when the browser ...
