Highest Voted 'cookies' Questions - Software Engineering Stack Exchange

26

votes

5 answers

Why can't we use IP address instead of cookies in identifying the client in servlets?

I know we have some extra advantages in using the cookies over IP address, but my question is Why can't the container just remember the IP address of the client in identifying the client when he visit his site again? Is it possible for the container…

asked Aug 14 '14 at 16:49

JAVA

1,220
3
15
17

17

votes

3 answers

How do I comply with the EU Cookie Directive?

On 26 May 2011, a new EU directive comes into force that users accessing websites should now be asked for permission to allow the website to store cookies containing information about them and their visit to the website. How have you have tackled…

legal privacy cookies

asked May 20 '11 at 13:54

Rory McCrossan

273
2
8

17

votes

2 answers

Why can't sockets be used to identify individuals instead of cookies?

Another question was asked regarding the use of IP addresses to identify individual clients. I think I understand why an IP address is insufficient. But what about the socket, which has more information and, from what I understand, is stateful? …

sockets cookies

asked Mar 26 '17 at 16:18

user266715

13

votes

3 answers

Why are requests for static content being sent to another site?

Whenever I login to stackoverflow or some sites I see lots of requests for sites like http://cdn.sstatic.net/. Why is this done rather than serving directly from the actual site? How does it help to speed up a website?

websites caching cookies

asked Jan 18 '11 at 08:04

S L

315
3
8

12

votes

2 answers

cookie vs. session vs jwt

I am reading up on authentication/authorization in web applications. Could anybody confirm/correct my current knowledge? Cookies: in their early version, a text file with a unique client Id an all the other information needed about the client (e.…

authentication authorization session cookies jwt

asked Sep 03 '17 at 07:07

user3629892

231
1
2
5

10

votes

4 answers

How will we be able to produce websites without using cookies with the new law?

Possible Duplicate: How do I comply with the EU Cookie Directive? Under this new EU law we are not allowed to use any cookies without asking first, I for one need to use a cookie to register the user logged on, as if not with a cookie they can…

web-development websites cookies

asked Jun 30 '11 at 11:39

Theresa Forster

340
2
9

8

votes

3 answers

Authentication via tokens

I'm relatively new to jwt.io and authentication and I'm using JWT.io in following manner. Server Side Once user logs in, I generate a token with userid embedded inside and pass it back to the user in the message body Client Side Browser/JS I'm…

authentication session authorization cookies

asked Mar 14 '17 at 04:33

user2727195

241
2
7

8

votes

2 answers

If I drop cookies with JavaScript will it still be compliant with the EU ICO Cookie Law?

The challenge proposed to me as to create a widget to apply in other sites that makes a website compliant with the cookie law[1]. Can I do this without changing server code? I mean, if there's code on server-side that writes an affiliate cookie to…

javascript cookies

asked Apr 26 '12 at 10:35

Fabio Milheiro

185
4

6

votes

4 answers

Persistent RESTful state on client without cookies

I'm reading Roy Fielding's dissertation Architectural Styles and the Design of Network-based Software Architectures, which introduces the REST architectural style. Roy explains that cookies are a violation of REST as they introduce stateful…

rest cookies

asked Feb 19 '15 at 13:41

perfectionist

627
7
15

5

votes

2 answers

How do you set cookies on frontend from the backend?

I'm a little confused about how to handle cookies between frontend and backend. I have a frontend react application a backend node express application. The frontend is hosted on Netlify and the backend on Heroku. It seems that you cannot put these…

http cookies

asked Apr 06 '21 at 16:43

Dashiell Rose Bark-Huss

231
1
2
7

5

votes

2 answers

Is setting "permanent" persistent login cookies a bad practice?

I realized that in Rails there is a built in permanent method for its persistent login cookies (aka. "remember me" cookies) method to give the client a cookie that expires in 20 years: cookies.permanent[:remember_token] = remember_token However it…

programming-practices security ruby-on-rails cookies

asked Mar 08 '15 at 13:59

xji

771
1
6
14

5

votes

1 answer

Controlling cookies with many tabs

I have a peculiar problem. My application has different levels of authentication. One specific level of user (super user) needs to be able to use the application as another user (subordinate user) that has lower privileges. We decided that when the…

c# asp.net-mvc-4 session cookies

asked Jun 06 '13 at 18:36

Wellington Zanelli

151
1
6

5

votes

5 answers

How to implement a no-login authentication system

I am looking to build a very loose authentication system that can track a user and link submitted data/comments to a specific user. The submissions are essentially anonymous, but a user may want to edit his submission/comment at a later date. I…

authentication login cookies

asked Apr 13 '12 at 22:38

mrwooster

780
4
12

4

votes

2 answers

Isn't it unsafe that any program can access cookies of a browser?

For example, for Firefox the cookies are kept as an SQLite DB in user's folder. Any program can read these cookies. So, for example, can't an .exe program read the contents of a cookie and pretend to the web site of that cookie as if it is the…

security cookies

asked Jan 03 '18 at 21:40

Canol Gökel

175
4

4

votes

3 answers

Saving Passwords for autologin

I know I should encrypt the password whenever I save passwords for security. But I don't know how should I encrypt password that when I save for autologin. If the password was just for checking user, I can encrypt passwords with one-way encryption…

encryption passwords cookies

asked Dec 31 '16 at 16:13

maxswjeon

51
6

Questions tagged [cookies]