| Author |
 Topic Search  Topic Options
|
jellesma 
Newbie
Joined: 27 September 2003
Status: Offline
Points: 3
|
 Post Options
 Thanks(0)
 Quote  Reply
 Topic: No more use of cookies
Posted: 02 October 2003 at 8:48am |
Hello,
Is it possible the use of cookie to disable so the forum can become a normal forum
|
 |
WebWiz-Bruce
Admin Group
Web Wiz Developer
Joined: 03 September 2001
Location: Bournemouth
Status: Offline
Points: 9844
|
Post Options
Thanks(0)
Quote Reply
Posted: 02 October 2003 at 9:30am |
|
99% of forum software uses cookies.
Without the use of ccokies there is no other real way to track a user in classic ASP.
|
|
|
|
fernan82
Mod Builder Group
Joined: 17 November 2002
Location: United States
Status: Offline
Points: 362
|
Post Options
Thanks(0)
Quote Reply
Posted: 02 October 2003 at 6:40pm |
 -boRg- wrote:
Without the use of ccokies there is no other real way to track a user in classic ASP.
|
So it can't be done with session variables? or passing session info on the links like vBulletin does?
Edited by fernan82
|
|
Gullanian
Senior Member
Joined: 04 January 2002
Location: England
Status: Offline
Points: 4373
|
Post Options
Thanks(0)
Quote Reply
Posted: 02 October 2003 at 7:13pm |
|
Yup, but sessions expire, and info in the querystring can be looked up by someone on the same pc in the internet history, or by looking over their shoulder!
|
|
fernan82
Mod Builder Group
Joined: 17 November 2002
Location: United States
Status: Offline
Points: 362
|
Post Options
Thanks(0)
Quote Reply
Posted: 02 October 2003 at 10:33pm |
Gullanian wrote:
Yup, but sessions expire, and info in the querystring can be looked up by someone on the same pc in the internet history, or by looking over their shoulder! |
Yea, but I think the way it's done is by generating a code from the user id, session id, and user IP (or something like that) so the code on the querystring won't always be the same for the same user... It might not work right for everyone, that's why forums that use that method have it as an option that users can enable on their profiles... Some people just don't like cookies and would prefer to use that kind of method so it's not a bad idea...
Of course it won't work for everyone and it won't be possible to keep you logged in when you return to the forum, that's why if implemented it should be up to the user to use cookies or that method...
Edited by fernan82
|
FeRnAN
|
|
WebWiz-Bruce
Admin Group
Web Wiz Developer
Joined: 03 September 2001
Location: Bournemouth
Status: Offline
Points: 9844
|
Post Options
Thanks(0)
Quote Reply
Posted: 03 October 2003 at 2:43am |
|
I can't see anyway it could be done with classic ASP without cookies,
if you where to use the session variables you still need cookies
enabled on the users machine inorder for session variables to work.
I belives in ASP.NET there is a way to do this without cookies as
ASP.NET allows the server to track users without cookies by appending
the session ID to links, but this is not possible with classic ASP.
|
|
|
|
Gullanian
Senior Member
Joined: 04 January 2002
Location: England
Status: Offline
Points: 4373
|
Post Options
Thanks(0)
Quote Reply
Posted: 03 October 2003 at 2:46am |
|
You can do it with querystrings, holding the username and password in it
|
|
WebWiz-Bruce
Admin Group
Web Wiz Developer
Joined: 03 September 2001
Location: Bournemouth
Status: Offline
Points: 9844
|
Post Options
Thanks(0)
Quote Reply
Posted: 03 October 2003 at 2:54am |
|
That would be extramly insecure spicially as browsers store URL's. If
you use the forum at work, uni, school, etc. the next person on the
machine could simply follow your URL and bang they are logged in as you.
|
|
|
|
