> "Authentication through forms" is not the way that HTTP authentication > works. If you would be doing HTTP authentication* > You do need cookies then or you can use a special 'session id' option in > the tag. I understand that and know how the HTTP Authentication works. All I was interested in was... whether there's some way, other than cookie or "session-ID" option (ugly parameter to URL) through which I can track the session. It seems there's no other way out. Actually, I am looking at present day scenarios where some large corporations, I know of, have strict policies on Cookies (at least they've issued guidelines and some even have their proxy servers not letting in / out any cookies; at least in India). It seems there's no otherway out... -- Cheers, Gaurav Vaish http://www.mastergaurav.org http://mastergaurav.blogspot.com -------------------------------- _______________________________________________ Ietf@xxxxxxxx https://www1.ietf.org/mailman/listinfo/ietf