2. HTTP Cookies

If you specify auth_method with the value of “cookie”, you can use session cookies generated by the server in your client. To prevent against the usage of modified forms to perform actions without the consent of the user, we require the HTTP header X-LJ-Auth be set to “cookie” as well.

Example 24.1. Using Wget 1.10 with auth_method=cookie in flat protocol

$ wget --post-data "mode=login&user=test&auth_method=cookie" --header="X-LJ-Auth: cookie" --header="Cookie: ljsession=cookieval" http://www.lj-23-m.bulyon.local/interface/flat