Forum OpenACS Development: Response to Login/Security tokens without cookies

I agree, it would be good to have an alternative. One thing to watch out for is that the session token doesn't become too large - I can remember doing this a few years ago and having a lot of problems with a URL size limit in (I think) IE 4.