Be sure to know all about session cookies. By default, PHP stores the
session in a cookie
Sheni R. Meledath escribió:
Hello:
We have set up a login page using sessions in PHP. Its working fine.
The server is a FreeBSD/Apache/PHP 4.
While accessing this page from IE 6 on Windows 2000, the
Hi,
I use win2k and IE 6 every day with PHP, and it works fine. I guess your problem comes
from the Internet Options of IE (tools/Internet Options). As Miguel Jiménez suggested,
check the cookie setting in the Internet Options.
Vincent
-Original Message-
From: Sheni R. Meledath
You may use:
?php session.use_cookies=0; ?
to deactivate the cookies from sessions in runtime...
--
Miguel J. Jiménez
ISOTROL, S.A. (Área de Internet)
Avda. Innovación nº1, 3ª - 41020 Sevilla (ESPAÑA)
[EMAIL PROTECTED] --- http://www.isotrol.com
TLFNO. 955036800 ext. 111
--
PHP General Mailing
Hi,
Thank you very much for your comments. We are facing a similar problem in
one of local systems which has Windows 2000 IE 6.0. Now one of the users
has complained about the same problem. His system configuration is the same
as above.
In one of the news groups, I have read before about a
I would do
script 1 :
$_SESSION['test'] = hello world;
and in script2 :
print($_SESSION['test']);
vincent
-Original Message-
From: Charles Collins [mailto:[EMAIL PROTECTED]
Sent: mardi 20 avril 2004 17:44
To: [EMAIL PROTECTED]
Subject: [PHP] session variables
I have two test files
Dear Vincent,
Tried that as well as $HTTP_SERVER_VARS, $_SESSION, etc., still cannot get
the damn thing working.
Regards,
Charlie.
Vincent Dupont [EMAIL PROTECTED] wrote in message
news:[EMAIL PROTECTED]
I would do
script 1 :
$_SESSION['test'] = hello world;
and in script2 :
hum. Try $_SESSION['test'] on page 2.
I have two test files running on a server, which is giving me a headache,
due to the fact the session variables are not been maintained across the
two
pages.
The server is running ...
PHP Version = 4.0.5
register_globals = ON
Session Support =
Does page1 call page2?
Or do you open another browser window and open page2?
My understanding is some browsers to NOT transfer the same session info to
another borwser window.
Tried that as well as $HTTP_SERVER_VARS, $_SESSION, etc., still cannot get
the damn thing working.
Regards,
* Thus wrote Charles Collins ([EMAIL PROTECTED]):
I have two test files running on a server, which is giving me a headache,
due to the fact the session variables are not been maintained across the two
pages.
The server is running ...
PHP Version = 4.0.5
register_globals = ON
Session
* Thus wrote Curt Zirzow ([EMAIL PROTECTED]):
This looks like output from 'php -i'. The php module *can* have a
different config, check these values from phpinfo() in a webpage
in the same directory as your scripts with
I fired my proofreader so I have to do this manually now :)
s/ with/.
Do yo have have start_session() on every page to before you can read session variables?
Dear list,
I am trying to set a simple session variable on PageA.
$_SESSION['CategoryID'] = intval($Data['ID']);
if I print after setting the value on PageA, I will
get the expected ID number.
go on to
Hi,
As I have no idea what those var contain ..
what does a print_r() of it give you?
print it right when you assign it to the session var to check if
it actually contains a value.
like:
print_r($Data['ID']);
and maybe even
print_r(intval($Data['ID']));
I suspect that this $Data['ID'] is empty
Hi,
Monday, April 19, 2004, 8:46:02 AM, you wrote:
KB Dear list,
KB I am sorry for the second posting, but this is going
KB to drive me to drink something other than lattes!
KB I have one page, index.php. when it calls mod_sub, a
KB directory type of page is printed. Here I am trying
KB to
In the last pair of examples where it fails, you know you are first
assigning the value of $Data['ID'] to the $_SESSION['CategoryID'] and the
over-writing that value with the value of intval($Data['ID'])? Why are you
assigning $Data['ID'] to it if you are going to overwrite it? If those
other
pete M wrote:
Am trying to increae the session lifetime to 8 hours ish
using this code
ini_set('session.gc_maxlifetime',28800);
does not work ?
any ideas
Pete
There are 3 conditions that must be met:
1. You must set it before session_start()
2. No other application can access your session
Hello Marek,
I had similar trouble with my PHP application. I used an .htaccess
file with the same line. But it still did not work. I guess I even tried
ini_set() function.
I have a question with this point :
2. No other application can access your session storage. Other
applications could
Friday, April 16, 2004, 4:35:30 PM, you wrote:
Hello Marek,
I had similar trouble with my PHP application. I used an .htaccess
file with the same line. But it still did not work. I guess I even tried
ini_set() function.
I have a question with this point :
I can only answer part of
On 14 April 2004 17:53, Paul Fine wrote:
Thanks guys but I have register globals ON so once the
session variable is
defined I should be able to address it without specifying $_SESSION ?
I don't think the documentation is clear on this point -- it may be that the
association between the global
Actually for me it isn't unclear at all:
The (super-) global variables are created when php starts working on
your script.
That pesky function/ini parameter (register_globals=on) is just a
replacement for an extract() on each of the global vars just then.
Whatever you do later with any of the
BOOT mailto:[EMAIL PROTECTED]
on Wednesday, April 14, 2004 9:40 AM said:
What I can't understand is why Test1 shows as nothing, while
Test2 shows the value I wanted. Thanks a lot!
[snip]
$_SESSION['element_countp'] = count($p_lnames);
echo TEST 1.$element_countp;
$element_countp =
On 14 April 2004 17:40, BOOT wrote:
Any help with this would be appreciated. the p and v lnames are
posted from a form. In the form, the user seperates last names with a
/. What I can't understand is why Test1 shows as nothing, while
Test2 shows the value I wanted. Thanks a lot!
Thanks guys but I have register globals ON so once the session variable is
defined I should be able to address it without specifying $_SESSION ?
-Original Message-
From: Chris W. Parker [mailto:[EMAIL PROTECTED]
Sent: April 14, 2004 11:48 AM
To: BOOT; [EMAIL PROTECTED]
Subject: RE: [PHP
'Chris W. Parker' [EMAIL PROTECTED] elucidated:
Thanks guys but I have register globals ON so once the session variable is
defined I should be able to address it without specifying $_SESSION ?
WHERE do you have it on? Most sites now have it turned off for VERY valid security reasons. If you are
Yes in php.ini. I never bothered turning off as (a) I did not take the time
to understand the implications and (b) my project is only for internal
network use anyway.
So I went and turned them off. Now of course my pages don't work properly. I
guess I have to go through all my code and address
BOOT mailto:[EMAIL PROTECTED]
on Wednesday, April 14, 2004 12:17 PM said:
So I went and turned them off. Now of course my pages don't work
properly. I guess I have to go through all my code and address the
variables properly ie. $_POST and $_SESSION?
no.
just assign them at the beginning
But if I want to use $username accross many pages then I will have to make
it a session variable and call it as such on each page like
$_SESSION['username']
Thanks again!
Chris W. Parker [EMAIL PROTECTED] wrote in message
news:[EMAIL PROTECTED]
BOOT mailto:[EMAIL PROTECTED]
on Wednesday,
BOOT mailto:[EMAIL PROTECTED]
on Wednesday, April 14, 2004 12:37 PM said:
But if I want to use $username accross many pages then I will have to
make it a session variable and call it as such on each page like
$_SESSION['username']
correct.
c.
--
PHP General Mailing List
Solved my main problem. I was assuming that variables registered with
$_SESSION were passed by reference. Apparently they're passed by value.
I moved the line '$_SESSION['order'] = $order;' from the top of the page 1
php code (before any properties for the order object are set), to the end of
the
Also, this means that each succeeding page that uses and changes the session
variable must read it in at the beginning of the code and reset it to
$_SESSION after changes are made, i.e.:
$order = $_SESSION['order'];
..
..
code that changes $order
..
..
$_SESSION['order'] = $order
Solved my
On 4 Apr 2004 Randall Perry wrote:
Solved my main problem. I was assuming that variables registered with
$_SESSION were passed by reference. Apparently they're passed by value.
*Passing* by value or by reference has to do with function parameters,
not array values. However you can assign one
Randall Perry [EMAIL PROTECTED] skrev i meddelandet
news:[EMAIL PROTECTED]
Solved my main problem. I was assuming that variables registered with
$_SESSION were passed by reference. Apparently they're passed by value.
Wouldn't make very much sense to pass by reference, would it? Seems to me
like
--- Paul [EMAIL PROTECTED] wrote:
I figured I could do something like $_SESSION['test'] = 5 and refer to
$test on other pages however I cannot. The reason I thought I could do
this is because I can do $_SESSION['test'] = $_POST['test'] and be able
to refer to just $test on other pages.
This
Joseph Ross Lee wrote:
Hello... Is there any example that I can look at that does a session
variable as an array? thanks
session_start();
$_SESSION['somekey'] = 'somevalue';
$_SESSION['someotherkey'] = array('one','two','three','four');
$_SESSION['yetanother'] =
Hello Carlos,
Wednesday, March 24, 2004, 2:52:16 PM, you wrote:
cc I want to know how can i do to make the session dont expire?. i have an
cc application that works with sessions, when i left the browser open for a
cc while, i dont know maybe 30 minutes, when i try to go into a section it
cc
From: Eric Gorr [EMAIL PROTECTED]
When I visit test1.php with the url:
http://domainpath/test1.php?name=billpwd=henry
I see the output:
user = 'bill'
ID= 41699d4461e8fe3a71243bb3cb1c2298'
You were remembered and are now being redirected to the home page. If
this fails for some reason
At 1:58 PM -0500 3/19/04, John W. Holmes wrote:
From: Eric Gorr [EMAIL PROTECTED]
When I visit test1.php with the url:
http://domainpath/test1.php?name=billpwd=henry
I see the output:
user = 'bill'
ID= 41699d4461e8fe3a71243bb3cb1c2298'
You were remembered and are now being redirected to
Ah HA! I knew I wasn't crazy...well, pretty sure... ;-)
I figured out why my sessions were behaving so oddly.
I was accessing test1.php via:
http://ericgorr.net/...
In test1.php, I was then redirecting to test2.php via
http://www.ericgorr.net/...
Apparently, with Mozilla and Safari, php
Hi,
Wednesday, March 17, 2004, 9:43:51 AM, you wrote:
NR I am running Apache/2.0.48 (Gentoo/Linux) mod_ssl/2.0.48 OpenSSL/0.9.6k PHP/4.3.4
NR I have a drupal site set up, http://rout.dyndns.org/cagc
NR Since some time on Sunday i have had the following error appear at the
NR bottom of the page:
On Wed, 17 Mar 2004 11:03:12 +1000
Tom Rogers [EMAIL PROTECTED] wrote:
Hi,
Wednesday, March 17, 2004, 9:43:51 AM, you wrote:
NR I am running Apache/2.0.48 (Gentoo/Linux) mod_ssl/2.0.48 OpenSSL/0.9.6k PHP/4.3.4
NR I have a drupal site set up, http://rout.dyndns.org/cagc
NR Since some
On Wed, 17 Mar 2004 12:37:55 +1000
Tom Rogers [EMAIL PROTECTED] wrote:
Hi,
Wednesday, March 17, 2004, 12:24:27 PM, you wrote:
NR Thanks, it is set right, but I see some other things are not.
NR these other bits are set in a .htaccess file in the root of this
NR applications htdocs tree.
Hello Bob,
Tuesday, March 9, 2004, 10:43:34 PM, you wrote:
BI I have imp mail installed and the users are being randomly logged out. When
BI I look at the matching session ID on the server, the file is completely
BI blank! I thought this might have been some sort of problem with using the
true;
onmouseout=status='';Purge Deleted/a
Regards,
Bob Irwin
Server Admin Web Apps
I'm a Brick!
- Original Message -
From: Richard Davey [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, March 10, 2004 10:20 AM
Subject: Re: [PHP] Session Logout Problems
Hello Bob
Thank you Chris.
I have selected Disable cookie option in the
safari
browser setting on my MAC. Before selecting this
option, my website was working fine but after
disabling the cookie option, i am not able to
log-in
to my website.
There are at least two options:
1. Include the
--- Hardik Doshi [EMAIL PROTECTED] wrote:
1. Include the session identifier in all your URLs
manually.
I did this and it works fine. Now by doing this i have
a question pop up in my mind is about Security. What
security measures should i take when i am passing the
session id value on
Hello Brian,
Thursday, March 4, 2004, 1:08:47 AM, you wrote:
BD I have a site with two limitations, neither of which can be changed:
BD 1. The http and https servers are on different domains.
BD 2. There are lots of non-PHP pages so session management requires
BD cookies.
BD Can anyone think
Hello Pance,
Tuesday, March 2, 2004, 11:45:49 AM, you wrote:
P and then I read the PHP manual and it suggested this instead:
P session_start();
P if (!$_SESSION['user_id']){
P which worked on my machine (Win98 and MS-IE5.5). But today I tried to login
P to my page from the
You are correct Richard. Thanks for stating the obvious. The reason I get
the undefined index.. error message is because IT DOES NOT EXIST. How does
this resolve my session problem?
Let me repeat - my code works with MS-IE 5.5 but not MS-IE6.
Pance.
Richard Davey [EMAIL PROTECTED] wrote in
--- Hardik Doshi [EMAIL PROTECTED] wrote:
The problem is when i start a session (session_start()), a cookie is
automatically generated on the local machine (PHPSESSID).
This is expected and normal. If it is really a problem for you, you should
probably explain why.
So for example if someone
The problem is when i start a session
(session_start()), a cookie is
automatically generated on the local machine
(PHPSESSID).
This is expected and normal. If it is really a
problem for you, you should
probably explain why.
I have selected Disable cookie option in the safari
browser
--- Hardik Doshi [EMAIL PROTECTED] wrote:
I have selected Disable cookie option in the safari
browser setting on my MAC. Before selecting this
option, my website was working fine but after
disabling the cookie option, i am not able to log-in
to my website.
There are at least two options:
1.
Hello bill,
Tuesday, February 24, 2004, 4:17:42 PM, you wrote:
b When I go from a normal php page (mod) to a cgi-based php page (stand
b alone), the session_start() function generates an error
b Warning: open(/tmp/sess_be0b03b8eb0ed759b10792d823099678, O_RDWR)
b failed: Permission denied (13)
On Sat, 2004-02-14 at 13:48, Philip J. Newman wrote:
Whats the best information to add to a session to say a user is logged in?
I currently have $siteUserLogIn=true;
anything else that I could add to beef up security?
For storing user status use whatever fits your application best. I save
On Tue, 2004-02-10 at 02:45, Ronald Ramos wrote:
$_SESSION['username'];
$_SESSION['password'];
Close, try this instead:
$_SESSION['username'] = $username;
$_SESSION['password'] = $password;
I edited page3.php but it still shows me nothing.
It looks great, now you just need to clear up your
On Tue, 2004-02-10 at 03:13, Ronald Ramos wrote:
It Worked. Thanks Man!
So I can use this to any other page?
Awesome! You have access to the $_SESSION variables on any php page on
the same server. Just make sure you call session_start() before you
access the $_SESSION array.
Let's say I
On Tue, 2004-02-10 at 00:43, Ronald Ramos wrote:
Hi All,
I've created 3 sample scripts, pls see below.
My problem is that page3.php can't display the value $username and
$password
Or is it because it the variables were not importe to that page, that's
why
$username and $password has no
On Wednesday 04 February 2004 20:59, marc serra wrote:
When the header function is called I'm correctly redirected on the right
page but all my session variables are destroyed.
Try session_write_close() before you redirect.
--
Jason Wong - Gremlins Associates - www.gremlins.biz
Open Source
On 04 February 2004 12:59, marc serra contributed these pearls of wisdom:
Hi,
I'm working on a multi-langage website and i got problem with
a fonction
which destroy my session :-(
I got a file which change my langage like this :
On 03 February 2004 21:20, DL contributed these pearls of wisdom:
Hi all,
I am using PHP v4.12, and here is the scenario.
Which OS are you on? I seem to remember that a bug in 4.1.2 meant that sessions were
write only on one particular group of OS -- but I can no longer remember whether it
I know I may be displaying severe ignorance, but I have to ask... What do
you mean by this page also uses paging? What is paging?
Larry
-Original Message-
From: DL [mailto:[EMAIL PROTECTED]
Sent: Tuesday, February 03, 2004 4:20 PM
To: [EMAIL PROTECTED]
Subject: [PHP] Session troubles
On Tue, 2004-02-03 at 13:44, Rolf van de Krol wrote:
I tried to start a session by this code:
!DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.01 Transitional//EN
http://www.w3.org/TR/html4/loose.dtd;
html
head
titleUntitled Document/title
meta http-equiv=Content-Type content=text/html;
snip
!DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.01 Transitional//EN
http://www.w3.org/TR/html4/loose.dtd;
html
head
titleUntitled Document/title
meta http-equiv=Content-Type content=text/html;
charset=iso-8859-1
/head
body
?php session_start();
echo(session_id());
?
/body
/html
/snip
Take a look
Matt Matijevich wrote:
snip
Take a look at the manual for sessions
session_start() has to be the first thing called
It doesn't have to be the first thing called. It only has to be called
BEFORE any output is sent to the browser IF you are using cookie based.
--
By-Tor.com
It's all about the
session.
As for session classes, there are many. Try the usual places... google,
sourceforge, freshmeat, phpclasses etc.
-Original Message-
From: ajay [mailto:[EMAIL PROTECTED]
Sent: Thursday, January 29, 2004 9:56 PM
To: [EMAIL PROTECTED]
Subject: Re: [PHP] session management
hi
Handling Session with PHP 4
http://www.zend.com/zend/tut/session.php
(Feb 15, 2000)
Session Authentication
http://www.zend.com/zend/spotlight/sessionauth7may.php
(May 15, 2001)
Custom Session Handling
http://www.zend.com/zend/spotlight/code-gallery-wade8.php
(April 30, 2003)
-
From: ajay [mailto:[EMAIL PROTECTED]
Sent: Friday, January 30, 2004 12:56 AM
To: [EMAIL PROTECTED]
Subject: Re: [PHP] session management
hi!
well i do have a MySQL database. The scenario is this, i dont
want to use cookies or do any URL rewriting. i'm looking for
something that mirrors
Hi,
This has been discussed and hammered out very often in this mailing list
in the past, you will find countless solutions in the archives. And
anyway no one can help you without knowing what about database or other
storage mechanism etc.
ajay wrote:
hi!
i need to maintain session state
hi!
well i do have a MySQL database. The scenario is this, i dont want to use
cookies or do any URL rewriting.
i'm looking for something that mirrors J2EE's Session object that contains
information about the user, their security level(user/admin etc) and this
information can then be verified
Last time i read the j2ee api i didn't notice anything about storing
admin/user staus in the HttpSession object.
Anyway like i said if you read the manual and SFTA you would have found
the answers.
ajay wrote:
hi!
well i do have a MySQL database. The scenario is this, i dont want to use
have a user bean, and then session.setAttribute(user, userBean);
do session.getAttribute(user) and validate before processing every request.
Quoting Raditha Dissanayake [EMAIL PROTECTED]:
Last time i read the j2ee api i didn't notice anything about storing
admin/user staus in the
On Fri, 2004-01-30 at 01:20, ajay wrote:
have a user bean, and then session.setAttribute(user, userBean);
do session.getAttribute(user) and validate before processing every request.
The php translation of that would be:
$_SESSION[user] = $userBean;
(some code later, on a different page)
Yes, I have used a .htaccess file in a Web Directory to prevent http
access to its contents.
Thanks again !!
-Pushpinder Singh
On Saturday, January 24, 2004, at 12:59 AM, Jason Wong wrote:
On Saturday 24 January 2004 05:46, Pushpinder Singh wrote:
I tried to keep a .htaccess file in the
From: Pushpinder Singh [EMAIL PROTECTED]
I am using php and Mysql in my application. The problem is that the
system automatically logs the user out of the system after 24 minutes.
I would like to extend the session lifetime to about 2-3 hrs. I know
there is a way to do it using a .htaccess
Pushpinder Singh wrote:
Hello All,
I am using php and Mysql in my application. The problem is that the
system automatically logs the user out of the system after 24 minutes. I
would like to extend the session lifetime to about 2-3 hrs. I know there
is a way to do it using a .htaccess file
Thanks John,
I dont have rights t change this value for my webserver. I only want
this value to be changed for my application. Is there a way to take
care of this ? Thanks again !!
Pushpinder
On Friday, January 23, 2004, at 11:28 AM, John Nichel wrote:
Pushpinder Singh wrote:
Hello All,
From: Pushpinder Singh [EMAIL PROTECTED]
I dont have rights t change this value for my webserver. I only want
this value to be changed for my application. Is there a way to take
care of this ? Thanks again !!
You can use an .htaccess file or (maybe) ini_set() (before
session_start()!!).
Pushpinder Singh wrote:
Thanks John,
I dont have rights t change this value for my webserver. I only want
this value to be changed for my application. Is there a way to take care
of this ? Thanks again !!
Pushpinder
Before you call session_start()
ini_set ( session.gc_maxlifetime,
Thanks much John,
I have about 8 different pages that are all session linked. Do I have
to add this ini_set() at the beginning of all the session_start() calls
on all these pages.
Thanks again and I am sorry if my question sounded lame.
Pushpinder Singh
On Friday, January 23, 2004, at 11:49
snip
I have about 8 different pages that are all session linked. Do I have
to add this ini_set() at the beginning of all the session_start() calls
on all these pages.
/snip
Not 100% sure, but I think if you dont add ini_set() before all of your
session_start() calls, session.gc_maxlifetime
Pushpinder Singh wrote:
Thanks much John,
I have about 8 different pages that are all session linked. Do I have
to add this ini_set() at the beginning of all the session_start() calls
on all these pages.
You should only have to do it for the first time session_start() is
called, but not
Actually the user is only allowed to get to any page if he has logged
on. Thus all the remaining pages check to see if a session has been
registered, if so then the person is allowed to to go on with his
session. If the session did not exist he is redirected to a login page.
Do you still
snip
Also if I were to create a .htaccess
file that is kept in the same dir as the application, what do I need to
include in that file ?
/snip
something like:
php_value session.gc_maxlifetime 25000
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit:
Pushpinder Singh wrote:
Actually the user is only allowed to get to any page if he has logged
on. Thus all the remaining pages check to see if a session has been
registered, if so then the person is allowed to to go on with his
session. If the session did not exist he is redirected to a login
From: John Nichel [EMAIL PROTECTED]
php_value session.gc_maxlifetime number of seconds
I'm really curious to see if any of this really works. I know it _should_,
but...
Assuming a shared/virtual server where all session files for all sites are
in the same location. When the garbage collector
snip
I'm really curious to see if any of this really works. I know it
_should_,
but...
Assuming a shared/virtual server where all session files for all sites
are
in the same location. When the garbage collector is triggered by a
request
to the site with this setting in .htaccess, does it honor
If you just change the session.save_path variable for one site on your
box to something like /tmp/onesite, do you still have to write your own
garbage routine? Wont the autamatic php garbage collection know to only
cleanup sessions in the /tmp/onesite directory?
Is the garbage collection
John W. Holmes wrote:
From: John Nichel [EMAIL PROTECTED]
php_value session.gc_maxlifetime number of seconds
I'm really curious to see if any of this really works. I know it _should_,
but...
Assuming a shared/virtual server where all session files for all sites are
in the same location. When
John W. Holmes wrote:
If you just change the session.save_path variable for one site on your
box to something like /tmp/onesite, do you still have to write your own
garbage routine? Wont the autamatic php garbage collection know to only
cleanup sessions in the /tmp/onesite directory?
Is the
Hello All,
I tried to keep a .htaccess file in the Dir that my application
esided in and kept the session lifetime of about 8 hrs. However I
checked to see after 2 hr and it had already kicked me out of the
system. Please advise.
Thanks in advance
Pushpinder Singh
On Friday, January 23,
On Saturday 24 January 2004 05:46, Pushpinder Singh wrote:
I tried to keep a .htaccess file in the Dir that my application
esided in and kept the session lifetime of about 8 hrs. However I
checked to see after 2 hr and it had already kicked me out of the
system. Please advise.
Does your
snip
If you store session variables , but the user has session cookies
disabled,
is there any way to recuperate those session variables?
/snip
Yes, look at the session.use_trans_sid variable.
http://www.php.net/session
If cookies are disabled, php will pass the session id as a ur variable
or
Diana Castillo wrote:
If you store session variables , but the user has session cookies disabled,
is there any way to recuperate those session variables?
--
--
Diana Castillo
Global Reservas, S.L.
C/Granvia 22 dcdo 4-dcha
28013 Madrid-Spain
Tel : 00-34-913604039
Fax : 00-34-915228673
email:
--- Diana Castillo [EMAIL PROTECTED] wrote:
If you store session variables , but the user has session cookies
disabled, is there any way to recuperate those session variables?
Cookies come in two types: session cookies and persistent cookies. Session
cookies have no set expiration date, so they
John W. Holmes [EMAIL PROTECTED] skrev i meddelandet
news:[EMAIL PROTECTED]
Andreas Magnusson wrote:
Hi, I wonder if anyone knows of a way to detect if a session has expired
(when your session.cookie_lifetime != 0).
I've tried to see if the session-vars are unset, but that doesn't seem
to
Andreas Magnusson wrote:
Hi, I wonder if anyone knows of a way to detect if a session has expired
(when your session.cookie_lifetime != 0).
I've tried to see if the session-vars are unset, but that doesn't seem to be
the case, still everythings seems to be lost.
My problem is that I have a page
Andreas Magnusson wrote:
Hi, I wonder if anyone knows of a way to detect if a session has expired
(when your session.cookie_lifetime != 0).
I've tried to see if the session-vars are unset, but that doesn't seem to be
the case, still everythings seems to be lost.
My problem is that I have a page
--- Scott Fletcher [EMAIL PROTECTED] wrote:
Is there a really good way to use PHP Session to tell whenether the
user is authorized user or not?
Yes, there are many good ways, and I'm sure I'm not even aware of many of
them.
I see one problem here, let's say the user tried to access certain
Scott,
I suspect you will gets lot's of input on this one. There is a fairly
glaring hack that allows users to override your session variables (if you
rely on the feature of PHP that automatically adds session variables, as
well as get and post variables, to the global pool [register_globals, I
At some point, the user is going to have to be responsible for his/her own
actions. After all, I can log into my bank's Web site and then let someone
else use my computer, and there's no way my bank can prevent it.
Sure the bank can prevent it or otherwise my bank would never use the
website in
Hate to disillusion you Scott, but Java cannot plug this hole. Let's
conduct a test, with your account, not mine, eh? ;-)
Warren Vail
-Original Message-
From: Scott Fletcher [mailto:[EMAIL PROTECTED]
Sent: Tuesday, January 06, 2004 11:20 AM
To: [EMAIL PROTECTED]
Subject: Re: [PHP
--- Scott Fletcher [EMAIL PROTECTED] wrote:
At some point, the user is going to have to be responsible for his/her
own actions. After all, I can log into my bank's Web site and then let
someone else use my computer, and there's no way my bank can prevent
it.
Sure the bank can prevent it
701 - 800 of 1598 matches
Mail list logo