Session Management

From Rice Wiki
Revision as of 03:35, 8 March 2024 by Rice (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Session management is one of two crucial steps of implementing digital identity (the other being Authentication). It is the process by which the server maintains the state of the user's authentication so that they may continue to use the system without re-authenticating.

Session Binding

Upon successful authentication, a session is created and binded to the client. A session identifier (session ID) name-value pair is randomly generated and assigned.

Generally, we use cookies to store session IDs due to the possibilities of advanced token properties such as expiration and usage constraints.

Sources