Only the client can read Cookie, because Cookie is on the client, and just client can access it. Server know the information in cookie just because the client pass information to the server.
but server can read & write Cookies, so sb said it's flaw of security.
我觉得客户端应用程序可以读cookie,但是不能写。因为cookie 是服务器储存在客户端的信息。
Yes, Server can read & write Cookies, at least it seems to do that. But please remember if you close the opetion on the client part, Server can got none and write none. That because server call client to write something and read something can pass that information to itself. Do you understand?
解决方案 »
免费领取超大流量手机卡,每月29元包185G流量+100分钟通话, 中国电信官方发货