On my website users make only one GET request for html page, then sockets do all the job. So, when user loads the page, he also should get session cookie with unique sid, and after this sid will be pushed to all socket requests (like in rpc) to perform some secure actions. I prefer to send just sid in sockets without any standard tools for websockets/flash/etc., because socket.io uses many techniques as fallbacks, and it is a headache to support all of them individually.
So, my question is - are there any ready solutions for handling sessions or server side manually (checking their sids/etc)? I found many tools for session handling (and also cookies), but all of them work with get/post requests (they fill req.session property in each get/post callback function). But i need to check sessionid in each socket request.
For example, this is very nice tool: https://github.com/balor/connect-memcached But i have no idea how to check it's sid (and then user data associated with sent sid) on the server outside of get/post request callbacks.
Could you please advice a way?