> Challenge 2: Passing data down each step Why not use cookies?

spiffytech · 2025-08-04T12:14:07 1754309647

Cookies are more appropriate for whole-site or whole-session data. There's no natural segregation of "this cookie belongs to this instance of this form". You could figure that out, but the additional moving parts cut down on the appeal.

devnull3 · 2025-08-04T12:55:43 1754312143

Cookie is what we make of it. For browser, its opaque data anyway.

So, when /upload is requested, the backend in response sets a cookie with a random uploadId (+ TTL). At the backend, we tie sessionId and uploadId.

With every step which is called, we verify sessionId and uploadId along with additional state which is stored.

This means even if the form is opened on a different tab, it will work well.

thefreeman · 2025-08-04T14:35:37 1754318137

Thats... basically what the guy did? He just put the sessionId in the form data instead of a cookie.

devnull3 · 2025-08-04T14:56:07 1754319367

> He just put the sessionId in the form data instead of a cookie.

This does not have the benefit of being usable across different tabs or even closing and re-opening the page. Besides, (a minor point) shoving all the state in the cookie makes code simple i.e. don't have use URL params.

bookofcooks · 2025-08-04T11:33:16 1754307196

You can... I guess.