wood burning stoves 2.0*
The moose likes Servlets and the fly likes cookies scoped to web-application within a domain Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login
JavaRanch » Java Forums » Java » Servlets
Bookmark "cookies scoped to web-application within a domain" Watch "cookies scoped to web-application within a domain" New topic
Author

cookies scoped to web-application within a domain

Sathvathsan Sampath
Ranch Hand

Joined: Oct 03, 2000
Posts: 96
I have a secure and insecure web application. The secure one deals with payment/billing services for a user while the other deals with browsing catalogs etc. The user experience should be seamless as he browses non-secure and secure parts of the application. Both applications are served from the same domain and need to use cookies.

In order to ensure security the cookies (from each application) should not be scoped just at the domain level but rather scoped to an application level within a domain. How do I do this? Do I need to check with my container if it offers anything on this? Thoughts..?
How did others here deal when they had secure and insecure parts of application using cookies?


- Sathvathsan Sampath
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: cookies scoped to web-application within a domain
 
Similar Threads
Session cookies - can they be changed at the client side
Where do all the cookies go?
Using spring security across multiple apps
Domains of cookie query
How to go from secure to insecure page without popup warning from browser?