> > Hi Internals, > > I would like to start a discussion on a new RFC > https://wiki.php.net/rfc/deprecate-get-post-sessions > > Please let me know whether the idea is clear and the RFC is understandable. > > In particular, I am looking for any feedback as to why this is a bad > idea. The primary motivation behind this RFC is to reduce potential > security pitfalls. > > Regards, > Kamil Tekiela
Hi Kamil, I quite like the idea, and I think the RFC motivation, impact, and the scope is clear as well. The PHP 8.4 deprecations RFC also proposes to deprecate SID constant; perhaps it's something worth mentioning in this RFC too?
