Re: [PHP] How is SESSION_ID passed?
On Fri, 24 May 2002, Alex Shi wrote: I have created several web sites using php. In all these sites session id is passed via cookie. However I noticed that some times it was passed by url. I am thinking that to pass session id by url will be safer than by cookie. You are thinking incorrectly; there's no particular difference. It's prettier by cookie, but doesn't work for everyone, so it's easiest to just use the built-in transparent session ID functionality as described in the manual. Most people get cookies, and those for whom that doesn't work get GET args. miguel -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] How is SESSION_ID passed?
Hello, I have created several web sites using php. In all these sites session id is passed via cookie. However I noticed that some times it was passed by url. I am thinking that to pass session id by url will be safer than by cookie. However I don't know how can do this without change my code. Do I have to do any configuration on php so that I can use url session id but don't need to modify my code? Alex -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP] How is SESSION_ID passed?
- Original Message - From: Alex Shi [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Friday, May 24, 2002 8:25 PM Subject: [PHP] How is SESSION_ID passed? Hello, I have created several web sites using php. In all these sites session id is passed via cookie. However I noticed that some times it was passed by url. I am thinking that to pass session id by url will be safer than by cookie. However I don't know how can do this without change my code. Do I have to do any configuration on php so that I can use url session id but don't need to modify my code? If the user has cookies turned on, PHP passes the session ID using cookies. If the user has cookies turned off, different things can happen. If trans-sid is turned on, PHP passes the session ID in the URL for links or in a hidden variable for forms that use the post method. If trans-sid is not turned on, you have to pass the session ID yourself. Janet Alex -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php