How is the user session determined in client?

Hi, so I am trying to rebuild a CMS on ASP.NET but I am not sure how the client page JS retrieves the session from PHP, anyone?

You generate an sso token and pass it from the server to the client object in the sso token field, then if I'm not mistaken the emulator verifies the token matches the field and generates the session.

Quote:

---

Originally Posted by briian

You generate an sso token and pass it from the server to the client object in the sso token field, then if I'm not mistaken the emulator verifies the token matches the field and generates the session.

---

Could you be more specific where the SSO token is inside the client object? Also, where is it generated on the CMS itself if for example we're talking about RevCMS..?

Quote:

---

Originally Posted by TPStudios

Could you be more specific where the SSO token is inside the client object? Also, where is it generated on the CMS itself if for example we're talking about RevCMS..?

---

No idea about RevCMS, every time I've ever had to touch that I wanted to die because it's so fucking confusing to look at (outdated). Where ever the client is accessed in a route is probably where it's being generated. It's stored in the flashvars.