Support for cookie based authentication
Also provide possibility to logout and remove the cookie
Set cookie on the server side for root-path ( / ).
The cookie should contain the following information:
Session ID (to be stored in a HashMap on the server, does not have to survive server restarts)
User name, language and other relevant principal information
Cookie expiration date should be sent from the client to the server during the login request. If no expiration duration is received from the client a default of 7 days should be set.
Moving to M14 together with the update to Restlet 2.0. The proposed solution only works with Restlet 2.0. As an alternative we wait for Restlet 2.1 where native support for cookies is expected.