On Wed, 24 Nov 1999, David Guerizec wrote:
> > PHPlib looks pretty good for doing session stuff in PHP (and thus
> > in Midgard). I don't know where it stores it's information, though.
>
> Yes, it seems to be pretty good at that.
> And it stores information about sessions *and* users in a mysql database.
> So it brings two problems :
> 1) Should I create two more tables (active_sessions & auth_user) in the
> Midgard database or should I create a separate database for each vhost I
> have ?
> 2) How to synchronize the user informations/authorization from
> Midgard/Apache and PHPLib ???
You're right, this is a hassle. Midgard *does* have something that
looks like session management, with cookie authentication. I haven't
used it, and don't know exactly how it works, but it looks like
if you send the client credentials in a MidgardLogin cookie midgard
will silently authenticate against that (and set the user id to that
for the request) when the user does not explicitly log on.
Henri or Jukka will know more about this. I just gleaned through the
module code.
> (And I really don't like URLs like
> http://www.mydomain.com/path/to/page?session_id=afc45e6d9b23f5a...)
Is that how phplib handles it? Furffu.
> > Combined with the extendable records I guess you could say that
> > Midgard 'supports' sessions. PHP has cookie support itself.
>
> What do you mean exactly by 'extendable records' ? Users preferences ?
Something like it. Read Jukkas' post on the 2.0 roadmap, that explains
it.
> No specific need for the moment, I just wanted to know how to do simple
> session handling without using PHPLib, and instead using the apache's
> capabilities (tell me if I'm wrong about apache's capabilities).
Apache comes with mod_usertrack, which I think is meant to do this
kind of stuff. I have no idea at the moment how one would go about
accessing this data. Also, mod_session (see http://modules.apache.org)
looks very promising and easy to use.
Bye,
Emile
--
This is The Midgard Project's mailing list. For more information,
please visit the project's web site at http://www.midgard-project.org
To unsubscribe the list, send an empty email message to address
[EMAIL PROTECTED]
