[horde] hidden cookies?

Jon Parise jon at horde.org
Tue Dec 4 10:48:21 PST 2001 

On Tue, Dec 04, 2001 at 01:36:29PM -0500, Tim Jones wrote:

> In exploring Horde's session-authentication scheme, I've been unable to 
> figure out where Horde stores its session ID cookie on the client's 
> computer. For instance, when I log in to access my email, my browser will 
> alert me that my mail server is sending me a cookie called "HordeSession"; 
> but afterwards, I can find no cookie of that name on my hard drive. (ie, in 
> Netscape's "cookies.txt" or MSIE's "/windows/cookies/") Can anyone explain 
> to me how my computer is then able to authenticate itself to the Horde 
> server without appearing to store the HordeSession cookie?
 
I don't remember how phplib works, but it might be possible that
Netscape and Internet Explorer don't stored session cookies in
their cookie cache.  Session cookies are those cookies that only
exist for the length of the browser session, so they can exist in
the process's memory space and don't need to be written to disk.

Session cookies have their expiration time set to zero.

-- 
Jon Parise (jon at csh.rit.edu)  .  Information Technology (2001)
http://www.csh.rit.edu/~jon/  :  Computer Science House Member


>From marcus at riboflavin.net Date: Wed,  5 Dec 2001 10:31:25 -0600
Return-Path: <marcus at riboflavin.net>
Mailing-List: contact horde-help at lists.horde.org; run by ezmlm
Delivered-To: mailing list horde at lists.horde.org
Received: (qmail 63102 invoked from network); 5 Dec 2001 16:30:50 -0000
Received: from dsl.75.91.networkiowa.com (HELO www2.riboflavin.net) (209.234.75.91)
  by clark.horde.org with SMTP; 5 Dec 2001 16:30:50 -0000
Received: (from www at localhost)
	by www2.riboflavin.net (8.11.6/8.11.6) id fB5GVPD55724
	for horde at lists.horde.org; Wed, 5 Dec 2001 10:31:25 -0600 (CST)
	(envelope-from marcus at riboflavin.net)
X-Authentication-Warning: www2.riboflavin.net: www set sender to marcus at riboflavin.net using -f
Received: from 209.234.75.79 ( [209.234.75.79])
	as user marcus at imap.riboflavin.net by horde.riboflavin.net with HTTP;
	Wed,  5 Dec 2001 10:31:25 -0600
Message-ID: <1007569885.3c0e4bdd68d38 at horde.riboflavin.net>
Date: Wed,  5 Dec 2001 10:31:25 -0600
From: "Marcus I. Ryan" <marcus at riboflavin.net>
To: horde at lists.horde.org
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 8bit
User-Agent: Internet Messaging Program (IMP) 4.0-cvs
X-Originating-IP: 209.234.75.79
Subject: Horde Logout button on horde menu

Maybe I'm missing something obvious here, but I'd like to have a
logout button appear on the horde menu at the bottom of the screen (so
I can log out regardless of the application I'm currently using).  Is
that possible, and if so, where do I set it?  It looks like I'd need
to set it in registry.php, but I'm not sure what I'd use for settings.
 If it makes a difference, I'm using IMP for authentication.

-- 
Marcus I. Ryan, marcus at riboflavin.net
-----------------------------------------------------------------------
 "Love is a snowmobile racing across the tundra and then suddenly it
 flips over, pinning you underneath.  At night, the ice weasels come."
                 -- Matt Groening
-----------------------------------------------------------------------

More information about the horde mailing list