Re: [hybi] workability (or otherwise) of HTTP upgrade

["Simon Pieters" <simonp@opera.com>]

On Fri, 10 Dec 2010 02:07:49 +0100, Zhong Yu <zhong.j.yu@gmail.com> wrote:

> On Thu, Dec 9, 2010 at 6:48 PM, John Tamplin <jat@google.com> wrote:
>> On Thu, Dec 9, 2010 at 7:12 PM, Simon Pieters <simonp@opera.com> wrote:
>>>
>>> But what is the use case for cookies in WebSockets? (If it has been
>>> discussed before then I have missed it and would appreciate pointers.)
>>
>> Simply that applications split between HTTP and WebSockets are likely to
>> want to share that data.  If you don't include cookies, then you force  
>> every
>> app to reinvent the wheel of how to transfer their session ID/etc.
>
> I think that's a small and acceptable price. It certainly won't be a
> problem for GWT.
>
> WS provides a very different programming model, how it manages states,
> and how it shares states with HTTP, is too risky for us to pin down.
> We better leave it to applications.

I agree. However, it would be useful to hear feedback from authors using  
WebSockets. Do they want the cookies or not?


> Previously I raised the question of how a WS connection sync with HTTP
> cookies if cookies are changing. And I think the best answer is to
> leave it to applications.

That's the situation now.


> It is difficult for us to choose a best
> strategy for app developers. If in one browser window http cookies are
> updated, should that affect the WS application in another window? We
> don't know.

The spec says to use the cookies you would use if you were issuing an HTTP  
request. So I think it's clear enough.

-- 
Simon Pieters
Opera Software