Kee,
Thanks for the feed back, and I agree completely with you on the search engine aspect. However you can also write the session expired page to simply start a new session and return the user to the original page they requested. So if someone bookmarks an expired page, the next time they access it - they get the right page but with a new session. I almost always use sessions after requiring the user to authenticate themselves, so generally the data is sensitive and you wouldn't want the search engines indexing it anyway. Eric -----Original Message----- From: Kee Hinckley [mailto:[EMAIL PROTECTED]] Sent: Thursday, October 11, 2001 11:12 AM To: Eric Lowry Cc: '[EMAIL PROTECTED]' Subject: Re: Session Management: An Alternate Approach -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 At 12:50 PM -0700 10/10/01, Eric Lowry wrote: >Hello fellow Embperl users! > > Recently, I have noticed several threads of discussion around session >management and I want to present an alternate mechanism for managing a >user's session. I have built a simple alternative to using cookies or URL >re-writing that seems SO simple that there must be something wrong with it. The problem with any solution that presents alternative URLs to users is that you get cross-session issues. Search engines will catalog the site using their "session" url (different each time). Users will click on those and use those "sessions". Sometimes users will bookmark a site, some times they won't, and over time you'll end up with N-to-N relationships between users and sessions. It's usable in a situation where you explicitly login to a site, or where sessions expire very quickly, but otherwise it gets pretty messy. - -- Kee Hinckley - Somewhere.Com, LLC http://consulting.somewhere.com/ [EMAIL PROTECTED] (or ...!alice!nazgul for time travelers :-) I'm not sure which upsets me more: that people are so unwilling to accept responsibility for their own actions, or that they are so eager to regulate everyone else's. -----BEGIN PGP SIGNATURE----- Version: PGP Personal Security 7.0.3 iQA/AwUBO8XTbiZsPfdw+r2CEQIavgCff1OiN1xTs1DdGzS0ba+Gt2zHPcoAoOvT 1VJQhP4fP2hQs+miO+Q2hSts =oGlJ -----END PGP SIGNATURE----- --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
