Re: [Slashcode-development] sessions/generatesession

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

Chris Nandor wrote:
> Well, in our new system, session IDs are not used for security anymore,
> they are only used for tracking the acivity of an author (how long they
> have been logged on and what story they are working on and such), so I
Basically how long they have been looking at a story (which eventually
times
out). Basically, know the bar on the bottom of the admin.pl page that
states what people are looking at? Well, that is what it does.

> don't think that's necessary.  The only way an author/admin is logged in,
> anymore, is by his regular username and password, and the user cookie that
> goes with it.
Right. The session table is updated whenever an admin hits a page on the
server.
So it does get updates fairly frequently. The cookie right now is pretty
much worthless.

Session is just basically a way to keep the table nice and normalized at
this
point. 

	-Brian