Web development - Projects - Website - Parts - Cookies

< Web development - Projects - Website - Parts - Contents < Web development - Projects - Website - Parts < Web development - Projects - Website < Web development - Projects < Web programmming <
TwitterFacebook
Get flash to fully experience Pearltrees
Cookies introduction

Wednesday, September 22nd, 2010 Samy has put together an impressive solution to store persistent cookies on user’s computers even when they have cookies disabled. The Evercookie script reaches deep into the toolbox to fish out some very interesting and devious tricks for local storage: http://ajaxian.com/archives/evercookie-using-a-lot-of-solutions-to-force-a-persistent-cookie

Evercookie – using a lot of solutions to force a persistent cookie

http://samy.pl/evercookie/ evercookie is a javascript API available that produces extremely persistent cookies in a browser. Its goal is to identify a client even after they've removed standard cookies, Flash cookies (Local Shared Objects or LSOs), and others. evercookie accomplishes this by storing the cookie data in several types of storage mechanisms that are available on the local browser. Additionally, if evercookie has found the user has removed any of the types of cookies in question, it recreates them using each mechanism available.

evercookie - virtually irrevocable persistent cookies

Signed and Permanent cookies in Rails 3

David added a very cool feature to Rails recently – Signed cookies and permanent cookies This lets you set permanent and/or signed cookies very easily. In case you happen to have seen my Railssummit presentation I had talked about using ActiveSupport::MessageVerifier for implementing “Remember me” functionality. The above commit makes that a whole lot easier. This will set a permanent and signed cookie using the secret specified in ActionController::Base.cookie_verifier_secret . http://m.onkey.org/signed-and-permanent-cookies-in-rails-3

Tech-Angels

http://www.tech-angels.com/post/840662150/ruby-on-rails-secure-cookies Anyway, secure websites (like e-commerce sites) must include some more secure options. Cookies have two attributes people usually don’t use : Secure : “ A server can specify thesecure flag while setting a cookie; the browser will then send it only over a secure channel, such as an SSL connection. ” Expires : “ Cookies expire, and are therefore not sent by the browser to the server, under any of these conditions: […] An expiration date has been specified, and has passed.” ( Definition taken from Wikipedia ) The last means the session AND the cookie will expire after the given date.