site-session

Description

The client session maintained by the server.

URL

/qcbin/rest/site-session

Remarks

To specify a client type or timeout when creating a session, POST an XML compliant with the Session-parameters Schema.

The input XML is optional. The default values are:

Add the QCSession cookie returned by a POST to the next request. In all subsequent requests, return the QCSession cookie returned by the previous response.

On a successful POST, the site-session resource returns an XSRF-TOKEN cookie. In all subsequent requests, include an X-XSRF-TOKEN header, having the value of the XSRF-TOKEN cookie. Failure to do so may create a security risk and make your application incompatible with other client types. See Session Management.

When a session ends, all locks are released. Therefore, if an application connects to a new session, discard all data downloaded previously. If you do not, a PUT operation can overwrite changes made by another user while the entity was not locked.

HTTP Methods

GET:  Resets the timeout clock. This extends the lifetime of the session.

PUT:  Resets the timeout clock. This extends the lifetime of the session.

DELETE:  Deletes the current session.

POST:  Creates a new session.

Media Type
GET
PUT
DELETE
POST
application/xml

*/*

No input. PUT creates default client type

Returns

One of the HTTP Return Codes.

No HTML body returned.

DELETE returns cookie expiration. For example:
Set-Cookie: QCSession=""; Expires=Thu, 01-Jan-1970 00:00:10 GMT; Path=/

POST returns a QCSession cookie and an XSRF-TOKEN cookie.

See Also

Session Management


© 1994 - 2014 Hewlett-Packard Development Company, L.P.