Wednesday 01 August 2012 2:52:59 pm - 4 replies
I would like to know if it's possible not to set the session cookie eZSESSID for anonymous ?
If possible, could it make problems ?
Modified on Monday 06 August 2012 4:56:06 pm by Franck Grenier
Monday 06 August 2012 4:55:08 pm
somme news about this topic.
A fresh "out of the box" 4.6 Enterprise does not set the Session cookie eZSESSID on each page. The cookie was set only on "/user/register" and "/user/login" during my test. On my 4.5 Enterprise, the session cookie is always set, on each page.
This cookie makes trouble with reverse-proxy, making caching impossible. We tried to delete it on Varnish side, during caching. But, when we remove it, eZ Publish forces HTTP headers on no-cache values :
I don't know if this behaviour is native but it looks a bit strange to me.
You must be logged in to post messages in this topic!