[Zope] SSL and Session Data
Dieter Maurer
dieter at handshake.de
Sat Sep 4 14:56:03 EDT 2004
Asad Habib wrote at 2004-9-3 13:04 -0400:
>Is there a difference in how Zope handles session data (i.e. anything
>stored within the SESSION attribute of the REQUEST object) when it is
>running with and without SSL? For some reason, when I access Zope
>securely (i.e. https://...) my session data is not retained as I access
>different pages of my application.
Apparently, your browser does not deliver the same cookies
for http/https.
We encode the session id into the URL (and therefore are
independent of cookies).
--
Dieter
More information about the Zope
mailing list