Nik Kalyani
6/8/2002 10:54:00 PM
Is there a way to uniquely identify a user that browses
to my MMIT-based application? Here's what I'm trying to
do:
The first time the user visits my app, they are
authenticated with a username/password combination. Once
authenticated, I want to be able to link a unique device
signature to their account in my database. On subsequent
visits, I want to look up this "device signature" from
the request headers and authenticate them automatically.
(Presuming that the risk of doing this is acceptable for
the app.)
I know that UP browsers send a x-up-subno header which is
effectively the user's encrypted subscriber ID. What
about other service providers? Is there a single header I
can always check or do I pretty much have to do this on a
carrier by carrier basis?
Cheers,
Nik