Presentation is loading. Please wait.

Presentation is loading. Please wait.

Session Management A290/A590, Fall 2014 09/25/2014.

Published byEthelbert Williams Modified over 8 years ago

Similar presentations

Presentation on theme: "Session Management A290/A590, Fall 2014 09/25/2014."— Presentation transcript:

1 Session Management A290/A590, Fall 2014 09/25/2014

2 Updates No office hours today, but I will be available tomorrow, Fri Sep 26, from 12:45pm to 2:15pm in Info West 109 (our regular room) Lab 4 extended to tomorrow night Lab 5 has been posted

3 Hidden Fields Allow for information to be passed between a form to CGI script. The Submit button must be clicked for the hidden information to be passed. The information is not saved on either the client or the server. It is passed from the client every time the form is submitted.

4 Browser Cookies Allow for a server script to save data on the client (the browser). When accessing a web page/script, the browser automatically sends the cookies associated with that page (as determined by the Domain and Path fields of the cookie) The data is stored on the client, so there is no need to submit a form to facilitate the data transfer.

5 Session Files All data related to a browser session is stored on the server in a session file. – or as we'll learn later, in a database How do we know which session file is associated with which browser session? – The first time a server script is loaded, it can generate a unique session ID and store it in a cookie on the browser. – When the script is loaded subsequently, the browser sends it the session ID cookie, and the server will know which session file to use. What is the format of the session file? – Whatever you make it. A simple text file to keep track of name/value pairs is all that's required.

6 Session Files Session files are more efficient than cookies, since only the session ID needs to be sent, not all session information. Session files are more secure than cookies, since they can't be tampered with on the client.

7 Session Files in Lab 4 You will need to write a small session file management component. It should be able to: – generate a random session id using uuid.uuid4() if one doesn't already exists – retrieve the session id from the cookie sent by the browser (you know how to do this already!) – create a text file with the same name as the session id – store and retrieve the session information to and from the file

8 GET vs POST Remember the forms we wrote before… …

9 GET vs POST Both are HTTP request methods GET requests data from the server POST submits data to be processes on the server But… – We can still use a GET request and provide some input to the server through the query string – e.g.: silo.soic.indiana.edu:10053/cgi- bin/process_options.py?name1=value1&name2=valu e2

10 GET vs POST GET requests… – can be cached by the browser – can be bookmarked – remain in browser history – have length restrictions POST requests… – can't be cached, bookmarked or kept in the browser history – don't have length restrictions

11 GET vs POST GET requests… – shouldn't be used when dealing with sensitive data – should only be used to retrieve data POST requests – should be used when user information (from forms) is submitted to the server

12 GET vs POST and Lab 5 Relevant to the Starting Page in Lab 5 – You need to be able to display a set of links to different quizes – The quiz identifier can be submitted through the query string, e.g. silo.soic.indiana.edu:10053/cgi- bin/take_quiz.py?quizid=123456789

Download ppt "Session Management A290/A590, Fall 2014 09/25/2014."

Similar presentations

Cookies, Sessions. Server Side Includes You can insert the content of one file into another file before the server executes it, with the require() function.

Cookies, Sessions. Server Side Includes You can insert the content of one file into another file before the server executes it, with the require() function.
Lecture 6/2/12. Forms and PHP The PHP $_GET and $_POST variables are used to retrieve information from forms, like user input When dealing with HTML forms.

Lecture 6/2/12. Forms and PHP The PHP $_GET and $_POST variables are used to retrieve information from forms, like user input When dealing with HTML forms.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 22 World Wide Web and HTTP.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 22 World Wide Web and HTTP.
Video, audio, embed, iframe, HTML Form

Video, audio, embed, iframe, HTML Form
Copyright 2004 Monash University IMS5401 Web-based Systems Development Topic 2: Elements of the Web (g) Interactivity.

Copyright 2004 Monash University IMS5401 Web-based Systems Development Topic 2: Elements of the Web (g) Interactivity.
Servlets and a little bit of Web Services Russell Beale.

Servlets and a little bit of Web Services Russell Beale.
Liang, Introduction to Java Programming, Sixth Edition, (c) 2005 Pearson Education, Inc. All rights reserved. 0-13-148952-6 1 Chapter 34 Servlets.

Liang, Introduction to Java Programming, Sixth Edition, (c) 2005 Pearson Education, Inc. All rights reserved Chapter 34 Servlets.
1 The World Wide Web. 2  Web Fundamentals  Pages are defined by the Hypertext Markup Language (HTML) and contain text, graphics, audio, video and software.

1 The World Wide Web. 2  Web Fundamentals  Pages are defined by the Hypertext Markup Language (HTML) and contain text, graphics, audio, video and software.
CGI Programming: Part 1. What is CGI? CGI = Common Gateway Interface Provides a standardized way for web browsers to: –Call programs on a server. –Pass.

CGI Programming: Part 1. What is CGI? CGI = Common Gateway Interface Provides a standardized way for web browsers to: –Call programs on a server. –Pass.
Christopher M. Pascucci Basic Structural Concepts of.NET Browser – Server Interaction.

Christopher M. Pascucci Basic Structural Concepts of.NET Browser – Server Interaction.
 A cookie is a piece of text that a Web server can store on a user's hard disk.  Cookie data is simply name-value pairs stored on your hard disk by.

 A cookie is a piece of text that a Web server can store on a user's hard disk.  Cookie data is simply name-value pairs stored on your hard disk by.
1 Web Developer & Design Foundations with XHTML Chapter 6 Key Concepts.

1 Web Developer & Design Foundations with XHTML Chapter 6 Key Concepts.
8 Chapter Eight Server-side Scripts. 8 Chapter Objectives Create dynamic Web pages that retrieve and display database data using Active Server Pages Process.

8 Chapter Eight Server-side Scripts. 8 Chapter Objectives Create dynamic Web pages that retrieve and display database data using Active Server Pages Process.
Advance Database Management Systems Lab no. 5 PHP Web Pages.

Advance Database Management Systems Lab no. 5 PHP Web Pages.
_______________________________________________________________________________________________________________ PHP Bible, 2 nd Edition1  Wiley and the.

_______________________________________________________________________________________________________________ PHP Bible, 2 nd Edition1  Wiley and the.
Web forms in PHP Forms Recap  Way of allowing user interaction  Allows users to input data that can then be processed by a program / stored in a back-end.

Web forms in PHP Forms Recap  Way of allowing user interaction  Allows users to input data that can then be processed by a program / stored in a back-end.
Reading Data in Web Pages tMyn1 Reading Data in Web Pages A very common application of PHP is to have an HTML form gather information from a website's.

Reading Data in Web Pages tMyn1 Reading Data in Web Pages A very common application of PHP is to have an HTML form gather information from a website's.
Open Source Server Side Scripting ECA 236 Open Source Server Side Scripting Cookies & Sessions.

Open Source Server Side Scripting ECA 236 Open Source Server Side Scripting Cookies & Sessions.
Cookies Set a cookie – setcookie() Extract data from a cookie - $_COOKIE Augment user authentication script with a cookie.

Cookies Set a cookie – setcookie() Extract data from a cookie - $_COOKIE Augment user authentication script with a cookie.
CHAPTER 12 COOKIES AND SESSIONS. INTRO HTTP is a stateless technology Each page rendered by a browser is unrelated to other pages – even if they are from.

CHAPTER 12 COOKIES AND SESSIONS. INTRO HTTP is a stateless technology Each page rendered by a browser is unrelated to other pages – even if they are from.

Similar presentations

Ads by Google