Each client is identified by a hash, passed along with every request to the server. What's the best way to handle tracking a users session in this case?
I'm using restful_authentication for user accounts etc. A large percentage of requests are expected to originate without a user account but just the unique hash.
My understanding of the way handles sessions is limited so please bear that in mind. :)