Also remember to keep in mind, some user's browser had the cookie disabled. Once that happen then it wouldn't work.
Very true. If that was the case, you'd have to maintain the session ID in every URL/form for the "private" area and also provide it in any URLs that go from the "public" area _back into_ the "private" area. You wouldn't need to maintain the session ID on every link that goes from public to public areas or private to public areas, though.
-- ---John Holmes...
Amazon Wishlist: www.amazon.com/o/registry/3BEXC84AB3A5E/
php|architect: The Magazine for PHP Professionals – www.phparch.com
-- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
