Loading ...
Sorry, an error occurred while loading the content.

540Re: Enforcing Cookieless Sessions

Expand Messages
  • Joshua Chamas
    Jun 28, 2002
      Ben Soares wrote:
      > Hello,
      > I've tried the latter suggestion with some success, however I still get
      > problems especially when you reload a page without the session-id. Ideally I
      > would like the absence of a session-id to really reforce a login, but it's
      > still picking up any cookie that may have been set. This could be a problem
      > with public access labs where we have no control over what might be set on
      > browsers, and different users might be wandering up to log in after each

      This feature will be implemented with the SessionQueryForce
      config in Apache::ASP 2.37, release date to be determined.
      Let me know if you want my dev version ahead of time.

      Joshua Chamas Chamas Enterprises Inc.
      NodeWorks Founder Huntington Beach, CA USA
      http://www.nodeworks.com 1-714-625-4051

      To unsubscribe, e-mail: asp-unsubscribe@...
      For additional commands, e-mail: asp-help@...
    • Show all 5 messages in this topic