tags:

views:

70

answers:

1
+1  Q: 

Browser extension to create independent cookie stores narrower than spec.

Does anyone know of a browser extension (preferably Firefox) that allows you to create independent cookie stores at a finer (and configurable) granularity than the specification?

E.g. say http://a.example.com/ first sends

Set-Cookie: a=bar; expires=Fri, 31-Dec-2010 23:59:59 GMT; path=/; domain=.example.com

So clearly this would also be sent by Firefox for anything subsequently requested under http://b.example.com/ . I want the extension to not send the header for b.example.com. Typically, this will cause b.example.com to send a different set-cookie header, which would then be resent only for b.example.com. The idea is to create multiple independent sessions on the same site.

It would be an added bonus if it supported other granularity schemes (e.g. http://example.com/a/ is separate from http://example.com/b/).

This strikes me as somewhat similar to Applications Boundaries Enforcer, but different and not within its scope (though I could be wrong).

Finally, I'm aware that this could give you enough rope to hang yourself.

A: 

Google is your friend. Will you be asking for the URL next?

podoster  2010-02-03 11:28:30
Very zen, but you're going to have to be more explicit than that. I did Google before asking the question. And if it were that obvious, someone would have already answered.
Matthew Flaschen  2010-02-03 11:36:53

related questions

What is typically the length of your optimal coding session?
What's the most current, good practice, and easiest way to use sessions in PHP?
What can cause an ASP.NET worker process to be recycled?
How do I explicitly set asp.net sessions to ONLY expire on closing the browser or explicit logou?
session variable mixup in ASP.NET?
In Classic asp, can I store a database connection in the Session object?
What are the advantages and disadvantages of the Session Façade Core J2EE Pattern?
Different values of GetHashCode for inproc and stateserver session variables
Best way for allowing subdomain session cookies using Tomcat
Is there a way to specify a different session store with Tomcat?
PHP: $_SESSION - What are the pros and cons of storing temporarily used data in the $_SESSION variable
What is the best way to handle sessions for a PHP site on multiple hosts?
How much data can/should you store in a users session object?
ASP.Net Session_Start event not firing
Logging image downloads
ASP.Net: If I have the Session ID, Can I get the Session object?
Secure session cookies in ASP.NET over HTTPS
Django Sessions
Can I put an ASP.Net session ID in a hidden form field?
Always including the user in the django template context
Rails - recovering database from Production.log
Most efficient way to get data from the database to session
What is the best way to prevent session hijacking?
FOSS ASP.Net Session Replication Solution?
How do I best detect an ASP.NET expired session?