Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> But one row before it mentions "such as accessing secure areas of the site."

Which could be read as allowing session cookies but not ones that allow you to save your login if you come back later. But it's also kind of confusing/ambiguous, which is another problem -- if people don't know what to do then what are they going to do? Cookie banners everywhere, because it's safer.

> Ok, I agree that for sites without username / password that will not work.

How would it work differently for sites with a username and password? The login cookie would still identify the user and would still be used to remember the language preference.



> allow you to save your login if you come back later.

Again, is there any browser nowadays that doesn't save the login? I don't know any, personally but I do not know all of them. And if they are, how much market share they have? (If I myself build tomorrow a browser without the functionality, that can't be an argument that the legislation is wrong...)

> How would it work differently for sites with a username and password?

Generally for sites where you use a username, the site will load from the server several information to display (ex: your full name to write "Hello Mister X", etc.). In the same request you can have the user preferences (theme/language/etc.), and the local javascript uses them to do whatever it needs to do. Even with a cookie, there needs to be some javascript to do some actions, so no difference.

Or you could just redirect via a URL that has the user preferences once he logged in (ex: after site knows you are the correct user it will redirect you to https://mysite.com?lang=en&theme=dark)

There are many technical solutions, not sure why everybody is so crazy about cookie (oh, maybe they think of the food! Yummy)




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: