Hello, even with *rewrite-for-session-urls* set to nil, the redirect function puts the session ID into the URL by calling add-cookie-value-to-url (under some circumstances). Is this a bug, or am I missing something?
Thanks, Richard
On Wed, May 20, 2009 at 5:08 PM, Richard KLINDA rklinda@gmail.com wrote:
Hello, even with *rewrite-for-session-urls* set to nil, the redirect function puts the session ID into the URL by calling add-cookie-value-to-url (under some circumstances). Is this a bug, or am I missing something?
Yes, *REWRITE-FOR-SESSION-URLS* controls whether HTML pages output by Hunchentoot should be rewritten. REDIRECT doesn't write HTML pages, it just sends headers. Use the :ADD-SESSION-ID keyword argument if you don't want the session ID to be added.
Edi.
Regarding 'Re: [hunchentoot-devel] redirect doesn't honor *rewrite-for-session-urls*'; Edi Weitz adds:
Hello, even with *rewrite-for-session-urls* set to nil, the redirect function puts the session ID into the URL by calling add-cookie-value-to-url (under some circumstances). Is this a bug, or am I missing something?
Yes, *REWRITE-FOR-SESSION-URLS* controls whether HTML pages output by Hunchentoot should be rewritten. REDIRECT doesn't write HTML pages, it just sends headers. Use the :ADD-SESSION-ID keyword argument if you don't want the session ID to be added.
Ahh, I understand, thank you!
Richard
-
Edi Weitz -
Richard KLINDA