Just today I was having a discussion with some of my co-workers about using cookies or URL parameters for session handling. Or to be more precise: We didn’t discuss technical issues, but we thought about how many people there are, who disable cookies on their own or who have to disable cookies due to system policies.
I remember that the choice between cookie-based session-handling or URL token based sesion handling was a rather big topic some years ago. Well, it’s way easier to implement today anyway, but I wonder if people would bother at all? You know what I mean, maybe nearly all of the surfers have cookies enabled nowadays?
What’s your opinion? How do you build your apps 2006? 😉