Dave,
If you use:
The cookies themselves are permanent which has some consequences for most
applications.
I have in the past come back to an application and found myself still logged
in after being away for a week!
I now use:
And write the cookies myself.
I agree. Note that the below will convert the cfid/cftoken to be
memory only cookie without the use of jssessionid
DK
On 9/12/05, Barney Boisvert <[EMAIL PROTECTED]> wrote:
> I'm almost positive that those two cookies are unexpiring, because
> they're used for more than just session manage
I'm almost positive that those two cookies are unexpiring, because
they're used for more than just session management. The session
timeout is performed on the server - after period X, the cookies are
accepted, but not considered to be part of the session any more. If
you le J2EE sessions in the C
3 matches
Mail list logo
