• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Session Tracking Mechanisms?

 
Joe Harry
Ranch Hand
Posts: 10128
3
Eclipse IDE Mac PPC Ubuntu
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Are https a way to do session tracking if the client does not support cookies?
 
manoj sam
Greenhorn
Posts: 4
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Yes there is a way.

You can use URL-rewriting if cookies are disable in the client matchine.
But there are some limitations. Like cant use it with non-dynamic content etc.. (According to the book "HeadFirst jsp and servlets")

eg:

out.println("<a href=\"");
out.println(response.encodeURL ("/root/myPage"));
out.println("\">Welcome</a>");

manoja.
 
Christophe Verré
Sheriff
Posts: 14691
16
Eclipse IDE Ubuntu VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Better put it that way : SSL (Secure Sockets Layer) used in the HTTPS protocol has a built-in mechanism allowing multiple requests from a client to be unambiguously identified as being part of a session. A servlet container can easily use this data to define a session. . So SSL is a session tracking system, while HTTPS is a protocol.
 
manoj sam
Greenhorn
Posts: 4
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
correction ..

My answer for HTTP.. not HTTPS.

manoja.
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic