Barry Frost

This is Barry Frost’s personal website.

Tagged #session

JSON Web Tokens (JWT) vs Sessions

Session variables without cookies

Clever. Uses window.name so won’t work if you open a new window/tab and is vulnerable to XSS. Useful trick nonetheless.

caboose new controversial default rails session storage: cookies

Discussion on the rights and wrongs of storing session data in cookies