Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db?

This WebDNA talk-list message is from

2016


It keeps the original formatting.
numero = 113077
interpreted = N
texte = 665 Try [session] (http://www.webdna.us/page.dna?numero=3D1009) It is easy to use, much more secure than a cookie and gives you more = control. - chris > On Oct 20, 2016, at 21:47, dale wrote: >=20 > Hi all, >=20 > Got the user password issue resolved. Now on to user sessions. >=20 > I looked in the archives and saw conversations between a lot of you = regarding this topic. Ken found some issues with the encoding methods = (other than base64) working properly. Some recommended using a = sessions.db >=20 > With the passage of time and enhancements made to WebDNA since then. I = was wondering what the prevailing thoughts are on maintaining user = sessions.=20 >=20 > I will most likely have a maximum of 20-25 users logged in at once. = For most of their shift they won't be very active. their activities will = pretty much follow the below: >=20 > Login > Display systems that need to be worked on for that shift (from a = pre-defined search) > Enter a key list for the vehicle keys they check out > Open a ticket for the first system being worked on (creates work = ticket to avoid losing any data) > Close the ticket (updates work ticket)=20 >=20 > Repeat until shift is over >=20 > Check keys back in from previous list. >=20 > They may be occasionally searching the knowledge base I wrote in = WebDNA. >=20 > The one other thing, hence creating the work ticket on opening it, is = that some of the techs will switch back and forth between their phones = and tablets. I realize I can't carry the session from one device to = another.=20 >=20 > I will set the session timeout to be 5-6 hours as the single longest = task they might have to do is 3-4 hours long. >=20 > I'm not as concerned as some were in the archive posts about security. = I will encrypt the cookies or at least obfuscate them. I won't store the = username and password in clear text.=20 >=20 >=20 > I'm curious as to what pros and cons you have found with either = method.=20 >=20 > Thank you for your insight. >=20 > Dale >=20 > --------------------------------------------------------- This message = is sent to you because you are subscribed to the mailing list . To = unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us Bug Reporting: = support@webdna.us --------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us . Associated Messages, from the most recent to the oldest:

    
  1. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (dale 2016)
  2. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (dale 2016)
  3. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (christophe.billiottet@webdna.us 2016)
  4. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (christophe.billiottet@webdna.us 2016)
  5. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (christophe.billiottet@webdna.us 2016)
  6. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (Donovan Brooke 2016)
  7. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (Tom Duke 2016)
  8. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (christophe.billiottet@webdna.us 2016)
  9. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (Donovan Brooke 2016)
  10. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (Tom Duke 2016)
  11. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (christophe.billiottet@webdna.us 2016)
  12. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (christophe.billiottet@webdna.us 2016)
  13. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (christophe.billiottet@webdna.us 2016)
  14. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (christophe.billiottet@webdna.us 2016)
  15. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (Donovan Brooke 2016)
  16. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (Tom Duke 2016)
  17. Re: [WebDNA] User sessions - cookies only or cookies and a sessions.db? (christophe.billiottet@webdna.us 2016)
  18. [WebDNA] User sessions - cookies only or cookies and a sessions.db? (dale 2016)
665 Try [session] (http://www.webdna.us/page.dna?numero=3D1009) It is easy to use, much more secure than a cookie and gives you more = control. - chris > On Oct 20, 2016, at 21:47, dale wrote: >=20 > Hi all, >=20 > Got the user password issue resolved. Now on to user sessions. >=20 > I looked in the archives and saw conversations between a lot of you = regarding this topic. Ken found some issues with the encoding methods = (other than base64) working properly. Some recommended using a = sessions.db >=20 > With the passage of time and enhancements made to WebDNA since then. I = was wondering what the prevailing thoughts are on maintaining user = sessions.=20 >=20 > I will most likely have a maximum of 20-25 users logged in at once. = For most of their shift they won't be very active. their activities will = pretty much follow the below: >=20 > Login > Display systems that need to be worked on for that shift (from a = pre-defined search) > Enter a key list for the vehicle keys they check out > Open a ticket for the first system being worked on (creates work = ticket to avoid losing any data) > Close the ticket (updates work ticket)=20 >=20 > Repeat until shift is over >=20 > Check keys back in from previous list. >=20 > They may be occasionally searching the knowledge base I wrote in = WebDNA. >=20 > The one other thing, hence creating the work ticket on opening it, is = that some of the techs will switch back and forth between their phones = and tablets. I realize I can't carry the session from one device to = another.=20 >=20 > I will set the session timeout to be 5-6 hours as the single longest = task they might have to do is 3-4 hours long. >=20 > I'm not as concerned as some were in the archive posts about security. = I will encrypt the cookies or at least obfuscate them. I won't store the = username and password in clear text.=20 >=20 >=20 > I'm curious as to what pros and cons you have found with either = method.=20 >=20 > Thank you for your insight. >=20 > Dale >=20 > --------------------------------------------------------- This message = is sent to you because you are subscribed to the mailing list . To = unsubscribe, E-mail to: archives: = http://mail.webdna.us/list/talk@webdna.us Bug Reporting: = support@webdna.us --------------------------------------------------------- This message is sent to you because you are subscribed to the mailing list . To unsubscribe, E-mail to: archives: http://mail.webdna.us/list/talk@webdna.us Bug Reporting: support@webdna.us . christophe.billiottet@webdna.us

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

WebDNA 4.5.1 Now Available (2003) Taxable Shipping (2003) Help! WebCat2 bug (1997) [WebDNA] anyone get MaxMind geolite city working? (2012) Protect (1997) Some Questions (1997) Online docs errata (2000) WebDNA 6 vs. Lasso 7 (2004) Sorry for the simple Question.. (1999) Quit revisited (1997) RE: E-mailer error codes (1997) Page Breaks (1999) Q: for those who use Cookies for sessions? (2004) [BULK] Fwd: [WebDNA] [BULK] WebDNA discovery in the Console - [having many crashes] (2011) whole word matching (2004) Frames and WebCat (1997) Country & Ship-to address & other fields ? (1997) A question on sub-categories (1997) tcpconnect/tcpsend problem ... (2004) Trouble with formula.db + more explanation (1997)