Right now you can have or the other. To me it does not make sense to store anything client side if you already have to access a pickle object locally. You only add overhead and risk of exposing data.
On Tuesday, 16 October 2012 10:59:20 UTC-5, VP wrote: > > I think cookie-based sessions is great for many cases. But in some > cases, it might not be desirable as clients can see what might be secret > information. > > Why not both? Maybe, two types of sessions, client-side and server-side > sessions. Although both client and server side sessions are meant to > maintain states, they are appropriate for different things. > --
