How to Use the HTTP header to survive a unique user ID

Source: Internet
Author: User
How to determine the user's ownership when a user accesses a page through a browser and generates a unique user ID. And as long as the user does not change the browser access page, the ID permanently specifies this user? Really Solve! How to determine the user's ownership when a user accesses a page through a browser and generates a unique user ID.

And as long as the user does not change the browser access page, the ID permanently specifies this user?

Really Solve!

The problem has been disabled. cause:

Reply content:

How to determine the user's ownership when a user accesses a page through a browser and generates a unique user ID.

And as long as the user does not change the browser access page, the ID permanently specifies this user?

Really Solve!

If you want the title to be described like this, use the http header to complete...

Unless the user uses a specially customized browser... or any operations starting from the user's identity are completed using AJAX...

Otherwise, the answer is very clear... Sorry, you can't do it...

In mainstream browsers... the only way to do this is cookie...

I don't think I need to describe it in detail... save a credential permanently on the server... then retrieve the identity from the server...

Note that if you wantPermanent storage... So this credential cannot be destroyed after expiration, or even has an automatic regeneration mechanism...

Assume that a user has a computer named Jia... he used the only browser on computer A to log on to his account...

Then he hasn't operated computer A for five years... the computer has been disconnected without shutting down the browser and changed the IP address...

In the past five years, users have logged on to their accounts on the five computers of Party B, Party B, and Party A respectively...

The user has modified his/her password on these computers. The website has also been shut down and maintained...

Five years later, the user is still logged on to computer A. This login is called permanent login...

However, this causes a major problem: the security of creden... if a user's creden are stolen...

Everyone with this credential can log on to the user's account without a password...

So, are you sure this is a reasonable demand ..?

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.