>1. In session_start(), it is possible to override ini settings like that:
>
>```php
>session_start([ 'use_cookies' => '1', 'use_only_cookies' => '1',
>'referer_check' => '' ]);
>```
>
>The relevant options should also be deprecated in that context.
Yes, they are. You can see that in my draft PR
> Le 4 avr. 2024 à 01:08, Kamil Tekiela a écrit :
>
> If there are no more comments, I would like to put this RFC to vote in
> the next two days.
Hi,
1. In session_start(), it is possible to override ini settings like that:
```php
session_start([ 'use_cookies' => '1', 'use_only_cookies'
If there are no more comments, I would like to put this RFC to vote in
the next two days.
Hi Everyone,
Upon consideration of your comments, I have decided to adjust my RFC.
Please see the updated version
https://wiki.php.net/rfc/deprecate-get-post-sessions
Changes include:
- session.use_cookies will not be deprecated
- session.trans_sid_tags, session.trans_sid_hosts,
>From: Anton Smirnov
>Date: Sun, 3 Mar 2024 at 19:56
>
>Greetings!
>
>As I know some session-related middlewares force custom-only session_id
>handling by setting
>
> use_cookies = Off
> use_only_cookies = On
>
>and then using session_id(...) directly
>
>Example:
Hi Kamil
On Mon, Mar 4, 2024 at 4:43 PM Kamil Tekiela wrote:
> I would like to start a discussion on a new RFC
> https://wiki.php.net/rfc/deprecate-get-post-sessions
>
> Please let me know whether the idea is clear and the RFC is understandable.
It would probably make sense to also list
On 03/03/2024 23:33, Kamil Tekiela wrote:
> Hi Anton,
>
>> As I know some session-related middlewares force custom-only session_id
>> handling by setting
>>
>> use_cookies = Off
>> use_only_cookies = On
>>
>> and then using session_id(...) directly
>>
>> Example:
>>
>
> Hi Internals,
>
> I would like to start a discussion on a new RFC
> https://wiki.php.net/rfc/deprecate-get-post-sessions
>
> Please let me know whether the idea is clear and the RFC is understandable.
>
> In particular, I am looking for any feedback as to why this is a bad
> idea. The primary
-- Forwarded message -
From: Anton Smirnov
Date: Sun, 3 Mar 2024 at 19:56
Subject: Re: [PHP-DEV] [RFC] [Discussion] Deprecate GET/POST sessions
To: Kamil Tekiela
Greetings!
I'm sorry for addressing you directly, if you can forward this message
to internals I'd be grateful
On Saturday, 2 March 2024 at 21:10, Kamil Tekiela wrote:
> Hi Internals,
>
> I would like to start a discussion on a new RFC
> https://wiki.php.net/rfc/deprecate-get-post-sessions
>
> Please let me know whether the idea is clear and the RFC is understandable.
>
> In particular, I am looking
Hi Anton,
> As I know some session-related middlewares force custom-only session_id
> handling by setting
>
>use_cookies = Off
>use_only_cookies = On
>
> and then using session_id(...) directly
>
> Example:
> https://github.com/middlewares/php-session/blob/master/src/PhpSession.php#L137
On Sat, Mar 2, 2024, at 22:10, Kamil Tekiela wrote:
> Hi Internals,
>
> I would like to start a discussion on a new RFC
> https://wiki.php.net/rfc/deprecate-get-post-sessions
>
> Please let me know whether the idea is clear and the RFC is understandable.
>
> In particular, I am looking for any
12 matches
Mail list logo