I am wondering if there are any recommendations or recommendations regarding the use of sessions and cookies? What should and should not be stored in them? Thank!
These documents read well about security issues with session cookies and how to get around them.
Thus, you save the secret key on the server. Using this key, you can calculate the secure hash by the secret key, timestamp and any data that you want in the cookie. You include a secure hash, timestamp, and cookie data.
, , . cookie.
, .
, , . , , , . , , , . (I.e. , , .)
Source: https://habr.com/ru/post/1724864/More articles:How to save several states in one variable? - c #Как использовать относительный путь для активов в Flash-библиотеке? - flashDjango: a one-to-many relationship with Contenttypes - genericsAsynchronous operations on WriteableBitmap - multithreadingC # - Using a strong name does not protect the assembly - c #cos returns incorrect values? - c ++Convert Tuples list to nested list using Python - pythonHow to initialize a class member correctly? - c ++NHibernate: Separate Lazyload Real Estate - nhibernateWhen would it be appropriate to pass a function to a function? - actionscript-3All Articles