Presentation is loading. Please wait.

Presentation is loading. Please wait.

Web Technologies Lecture 6 State preservation. Motivation How to keep user data while navigating on a website? – Authenticate only once – Store wish list.

Published byRosamund Brown Modified over 9 years ago

Similar presentations

Presentation on theme: "Web Technologies Lecture 6 State preservation. Motivation How to keep user data while navigating on a website? – Authenticate only once – Store wish list."— Presentation transcript:

1 Web Technologies Lecture 6 State preservation

2 Motivation How to keep user data while navigating on a website? – Authenticate only once – Store wish list or shopping cart items while browsing an online shop – Remember user preferences when displaying a page

3 Stateless vs. stateful State – a set of conditions at a moment of time – Computers are inherently stateful in operation Describe whether or not a computer is designed to note and remember one or more preceding events in a sequence of interactions Stateful means that a computer keeps track of the state of interaction Stateless means that no record of previous interactions are kept and that each interaction request is handled solely based on information that comes with it

4 Sessions A semi-permanent interactive information interchange Set up or established at a certain point in time Basic requirement to perform connection- oriented communication Enables stateful communication

5 Stateless protocol Protocol that treats each request as an independent transaction Communication consists of a paired request- responses It does not require the server to retain session information Examples – IP – HTTP

6 Stateful protocol Requires keeping the internal state on the server Examples – FTP During a session the user provides authentication details and sets various variables All details are stored on the server as part of the user state

7 Pros and cons Advantages of stateless communication – Simplifies the server design – No need to dynamically allocate storage – If client dies in mid-connection no need to clean up the state However – Requires additional information in every request – The information needs to be processed on the server

8 Stateful HTTP Keep information between different requests Useful in many cases – Stores user information when navigating a website Authentication credentials Shopping cart items Search preferences HTTP is stateless  need artificial constructs – Hidden form variables – HTTP Cookies – Web Storage (HTML 5) – Server side session variables – URL rewriting using URI-encoded parameters

9 Client side web sessions State information is kept on the client Approaches – Hidden variables – Cookies Format: cookieName=cookieValue Handled using Javascript document.cookie="username=John Doe; expires=Thu, 18 Dec 2013 12:00:00 UTC";

10 Data flow 1.Server sends current state to client 2.Client stores state in a cookie – In memory – On disk 3.For each successive request client sends cookie information to server 4.Server uses cookie data to remember the state of the web application

11 Client side issues Prone to tempering from user or locally installed software When confidentiality and integrity is required – Only the server must be able to interpret the data – Only the server should manipulate data – Only the server should initiate valid sessions – Encryption is required Cookies should be small to avoid communication overhead – Data compression may be needed for large session data Logout not fully implemented – Clients can drop cookies but data can be resent by the server

12 Web storage Alternative to cookies Implemented in HTML 5 Advantages – Security – Can store more data than a cookie (>5Mb) – Information is never transferred to the server – Local storage is per origin All pages from one origin can store and access the same data

13 Using web storage localStorage object localStorage.setItem("lastname", "Smith"); var name = localStorage.getItem(“lastname”); localStorage.removeItem("lastname"); sessionStorage object – Similar methods to localStorage – It keeps data only for the current session If the tab is closed data is lost

14 Server side web sessions Full control of the session – Can terminate a session on demand Existing frameworks can reduce the amount of code to handle sessions – Apache Shiro Can handle larger data than a cookie Only reference to session ID is sent over HTTP as a cookie Implementation can change independent on client

15 Server side issues More points of failures – If DB is down sessions cannot by created, updated, or validated More overhead in handling sessions – Requires asynchronous DB write Web applications can only verify a session by communicating with the server

16 What’s next? AJAX – Synchronous vs. asynchronous JQUERY Server side programming Web services Cloud computing

Download ppt "Web Technologies Lecture 6 State preservation. Motivation How to keep user data while navigating on a website? – Authenticate only once – Store wish list."

Similar presentations

Web Programming 1 Darby Chang Web Programming. Cookie 2 Web Programming.

Web Programming 1 Darby Chang Web Programming. Cookie 2 Web Programming.
Lecture 6/2/12. Forms and PHP The PHP $_GET and $_POST variables are used to retrieve information from forms, like user input When dealing with HTML forms.

Lecture 6/2/12. Forms and PHP The PHP $_GET and $_POST variables are used to retrieve information from forms, like user input When dealing with HTML forms.
DT228/3 Web Development multi page applications/ sharing data.

DT228/3 Web Development multi page applications/ sharing data.
15 Chapter 15 Web Database Development Database Systems: Design, Implementation, and Management, Fifth Edition, Rob and Coronel.

15 Chapter 15 Web Database Development Database Systems: Design, Implementation, and Management, Fifth Edition, Rob and Coronel.
Outline IS400: Development of Business Applications on the Internet Fall 2004 Instructor: Dr. Boris Jukic Server Side Web Technologies: Part 1.

Outline IS400: Development of Business Applications on the Internet Fall 2004 Instructor: Dr. Boris Jukic Server Side Web Technologies: Part 1.
XP Tutorial 9 New Perspectives on JavaScript, Comprehensive1 Working with Cookies Managing Data in a Web Site Using JavaScript Cookies.

XP Tutorial 9 New Perspectives on JavaScript, Comprehensive1 Working with Cookies Managing Data in a Web Site Using JavaScript Cookies.
Does Ajax suck? CS575 Spring 2007 Chanwit Suebsureekul.

Does Ajax suck? CS575 Spring 2007 Chanwit Suebsureekul.
How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.

How Clients and Servers Work Together. Objectives Learn about the interaction of clients and servers Explore the features and functions of Web servers.
Application Layer  We will learn about protocols by examining popular application-level protocols  HTTP  FTP  SMTP / POP3 / IMAP  Focus on client-server.

Application Layer  We will learn about protocols by examining popular application-level protocols  HTTP  FTP  SMTP / POP3 / IMAP  Focus on client-server.
1 The World Wide Web. 2  Web Fundamentals  Pages are defined by the Hypertext Markup Language (HTML) and contain text, graphics, audio, video and software.

1 The World Wide Web. 2  Web Fundamentals  Pages are defined by the Hypertext Markup Language (HTML) and contain text, graphics, audio, video and software.
Web Browsers It is an application software that is used to display and interact with text, images and other information located on web pages at web sites.

Web Browsers It is an application software that is used to display and interact with text, images and other information located on web pages at web sites.
269200 Web Programming Language Dr. Ken Cosh Week 1 (Introduction)

Web Programming Language Dr. Ken Cosh Week 1 (Introduction)
Christopher M. Pascucci Basic Structural Concepts of.NET Browser – Server Interaction.

Christopher M. Pascucci Basic Structural Concepts of.NET Browser – Server Interaction.
 A cookie is a piece of text that a Web server can store on a user's hard disk.  Cookie data is simply name-value pairs stored on your hard disk by.

 A cookie is a piece of text that a Web server can store on a user's hard disk.  Cookie data is simply name-value pairs stored on your hard disk by.
Sys Prog & Scripting - HW Univ1 Systems Programming & Scripting Lecture 15: PHP Introduction.

Sys Prog & Scripting - HW Univ1 Systems Programming & Scripting Lecture 15: PHP Introduction.
Chapter 25 Utilizing Web Storage.

Chapter 25 Utilizing Web Storage.
FALL 2005CSI 4118 – UNIVERSITY OF OTTAWA1 Part 4 Web technologies: HTTP, CGI, PHP,Java applets)

FALL 2005CSI 4118 – UNIVERSITY OF OTTAWA1 Part 4 Web technologies: HTTP, CGI, PHP,Java applets)
Comp2513 Forms and CGI Server Applications Daniel L. Silver, Ph.D.

Comp2513 Forms and CGI Server Applications Daniel L. Silver, Ph.D.
Chapter 16 The World Wide Web. 16-2 Chapter Goals Compare and contrast the Internet and the World Wide Web Describe general Web processing Describe several.

Chapter 16 The World Wide Web Chapter Goals Compare and contrast the Internet and the World Wide Web Describe general Web processing Describe several.
思科网络技术学院理事会. 1 Application Layer Functionality and Protocols Network Fundamentals – Chapter 3.

思科网络技术学院理事会. 1 Application Layer Functionality and Protocols Network Fundamentals – Chapter 3.

Similar presentations

Ads by Google