Without cookie on the public frontend?

[EdMueller]

Hi, it is possible to use Ghostff/Session on a private/public website without using a cookie in the frontend? I need the cookie only in the backend and the code base is (in parts) the same - so the public cookie confuses the system (based on Flight PHP).

[Ghostff]

Out of the box, Ghostff/Session always sends a Set-Cookie header when you construct Session, regardless of which storage driver you use. So you cannot use it on the public site without a frontend cookie being set unless you either:

• Avoid constructing Session on public routes, or
• Scope the cookie so it won’t be sent by the browser on public requests (path/domain segregation),

[EdMueller]

always sends a Set-Cookie header when you construct Session

Yes, i noticed that. My solution: I divided the shared routes into two separated realms (private, public) => More routes, more work - yes, i am lazy ;-).