[jboss-as7-dev] [AS7-664] Proposed changes for the HTTP Server

Remy Maucherat rmaucher at redhat.com
Wed Apr 27 07:10:09 EDT 2011


On Wed, 2011-04-27 at 12:00 +0100, Darran Lofthouse wrote:
> On 04/27/2011 11:56 AM, Remy Maucherat wrote:
> > On Wed, 2011-04-27 at 12:29 +0200, Heiko Braun wrote:
> >>
> >> A 'session' can not be distinguished by 'physical connection'.
> >> (Assuming you refer to the port)
> >>
> >> I think what we need is proper session management, no?
> >> Maybe Remy has some input on this?
> >
> > Add a cookie with an ID. No need to make it very complex.
> 
> For the moment adding a cookie with an ID for session management is more 
> complex that we actually need ;-)

Ok ;) But if the alternative is link encoding, it may be more annoying
to do, and it is also less secure.

-- 
Remy Maucherat <rmaucher at redhat.com>
Red Hat Inc



More information about the jboss-as7-dev mailing list