Tag Archives: Access-Control-Allow-Origin

Session sharing between two servers

Hi guys,

yesterday, in the office, we had problems with sharing php sessions between two servers without any storage system. There are a lot of solutions with memcache, redis and every other key-value engine, but in our case we had to do it without using third-party service.

So, what was the solution? I’ve written two scripts, one for server and one for client.

 

Some good articles for JSONP hijacking:

http://homakov.blogspot.be/2013/02/are-you-sure-you-use-jsonp-properly.html?showComment=1374935144243#c3257897429883603211
http://www.thespanner.co.uk/2011/05/30/json-hijacking/
http://haacked.com/archive/2009/06/25/json-hijacking.aspx/