Re: [PHP] SESSIONS QUESTION

At 9:59 AM -0700 7/18/08, R.C. wrote: What's the sequence here. I was able to get the password going, protect the main.php page, sent the email etc. but can't get that password to remain on the main.php when they user tries to get back to that page. Really appreciate some input and coding. I a

[PHP] SESSIONS QUESTION

Hi group, I'm still having trouble with sessions on a page and need help. I've been working with all sorts of configurations on this one but it doesn't seem to be working properly. Here's the scenario: I have a login.html page that thas two fields for user input i.e. a password (that is given t

RE: [PHP] Sessions question

Owkee here goes: * Removing the foreach loop only supplied me with not being able to log in. But again I dunnot think this is the problem. The variables are stored correctly. At certain times the user_id sessions were just swapped... * Now I've seen that session_register('email');

RE: [PHP] Sessions question

I do not think this causes the problem. It's just redundant. Thx anyway -Original Message- From: Curt Zirzow [mailto:[EMAIL PROTECTED] Sent: donderdag 21 oktober 2004 22:11 To: [EMAIL PROTECTED] Subject: Re: [PHP] Sessions question * Thus wrote Reinhart Viane: > PHP Code >

RE: [PHP] php sessions question

>I normally do as you have suggested here - but why do you suggest that >this method is better? > > One reason is for security. You cannot ever rule out the possibility of a user injecting someone else's data into the session to get access to information that he should not have. Of course he

Re: [PHP] php sessions question

Pete wrote: You should only save the userId in the session, everything else should be retrieved from your database using that id. I normally do as you have suggested here - but why do you suggest that this method is better? One reason is for security. You cannot ever rule out the p

Re: [PHP] php sessions question

In message <[EMAIL PROTECTED]>, raditha dissanayake <[EMAIL PROTECTED]> writes >Reinhart Viane wrote: > >>in a page checkuser i do this after the user is logged in: >> PHP Code >> // Register some session variables! >> session_register('userid'); >> $_SESSION['us

Re: [PHP] Sessions question

* Thus wrote Reinhart Viane: > PHP Code > // Register some session variables! > session_register('userid'); > $_SESSION['userid'] = $userid; Do not use session_register with $_SESSION. http://php.net/session-register Curt -- Quoth the Raven, "Nevermore." -- PHP General Mailing

Re: [PHP] Sessions question

On Thu, 21 Oct 2004 10:14:47 -0400, Mike Smith <[EMAIL PROTECTED]> wrote: > How about changing How about learning to trim your posts? Thanks. :) -- Greg Donald Zend Certified Engineer http://gdconsultants.com/ http://destiney.com/ -- PHP General Mailing List (http://www.php.net/) To unsubsc

Re: [PHP] Sessions question

hi, Please don't send multiple posts, I just replied to your previous message thinking that it had not been answered, a little further down I come across this. It's very confusing to everyone. thanks -- Raditha Dissanayake.

Re: [PHP] Sessions question

ndreds of methods how several users log in, upload, log > out etc. so I can not test them all... :( > > It seems that sometimes the $_SESSION['user_id'] of the several users > get mixed and this may not happen. > > I don't know if this is a known bug or if there

Re: [PHP] php sessions question

Reinhart Viane wrote: in a page checkuser i do this after the user is logged in: PHP Code // Register some session variables! session_register('userid'); $_SESSION['userid'] = $userid; session_register('first_name'); $_SESSION['first_nam

Re: [PHP] Sessions question

On Thu, 21 Oct 2004 16:06:37 +0200, Reinhart Viane <[EMAIL PROTECTED]> wrote: > I don't know if this can be caused by the fact register_globals seem to > be 'on' on the server (btw PHP Version 4.2.3) You can override that setting if the web server is running apache and AllowOverrides is set for yo

RE: [PHP] Sessions question

to be 'on' on the server (btw PHP Version 4.2.3) Thx for the advice, I hope I can sort it out soon Greetz Reinhart -Original Message- From: Greg Donald [mailto:[EMAIL PROTECTED] Sent: donderdag 21 oktober 2004 15:47 To: [EMAIL PROTECTED] Subject: Re: [PHP] Sessions question

Re: [PHP] Sessions question

On Thu, 21 Oct 2004 14:43:45 +0200, Reinhart Viane <[EMAIL PROTECTED]> wrote: > Hey Mike, > > After some intensive testing it seemed that $user_id did not solve the > isue > > I hereby give the script to get the $user_id: > > // check if the user info validates the db > ($username and $password

RE: [PHP] Sessions question

d the last thing I've done is putted: session_start(); On the first line instead of after this: mailto:[EMAIL PROTECTED] Sent: donderdag 21 oktober 2004 13:28 To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: Re: [PHP] Sessions question On Thu, 21 Oct 2004 11:39:23 +0200, Reinhart Vian

Re: [PHP] Sessions question

On Thu, 21 Oct 2004 11:39:23 +0200, Reinhart Viane <[EMAIL PROTECTED]> wrote: > Hey all, i'm new to this list so forgive me if i make any huge > mistakes. > I'm in a beginning stage of learning php and i hope you guys can help me > out with this question: > > in a file named checkuser i do this w

[PHP] Sessions question

Hey all, i'm new to this list so forgive me if i make any huge mistakes. I'm in a beginning stage of learning php and i hope you guys can help me out with this question: in a file named checkuser i do this when a users logs in: PHP Code // Register some session variables! session_register

[PHP] php sessions question

in a page checkuser i do this after the user is logged in: PHP Code // Register some session variables! session_register('userid'); $_SESSION['userid'] = $userid; session_register('first_name'); $_SESSION['first_name'] = $first_nam

RE: [PHP] Re: PHP Sessions Question

, July 08, 2004 11:23 PM To: [EMAIL PROTECTED] Subject: Re: [PHP] Re: PHP Sessions Question > On garbage collection, it happens sometimes within seconds and sometimes > within minutes. It tends to occur in batches with lulls of 20 to 30 > minutes. So, for example, I can login, navigate t

Re: [PHP] Re: PHP Sessions Question

* Thus wrote My Self: > > or using the default handler, and the /tmp dir is full. where /tmp being the local value for your session.save_path ini setting. Curt -- First, let me assure you that this is not one of those shady pyramid schemes you've been hearing about. No, sir. Our model is the

Re: [PHP] Re: PHP Sessions Question

* Thus wrote Jason Barnett: > >On garbage collection, it happens sometimes within seconds and sometimes > >within minutes. It tends to occur in batches with lulls of 20 to 30 > >minutes. So, for example, I can login, navigate through 11 different pages > >to generate the problem, navigate 2 pages

Re: [PHP] Re: PHP Sessions Question

On garbage collection, it happens sometimes within seconds and sometimes within minutes. It tends to occur in batches with lulls of 20 to 30 minutes. So, for example, I can login, navigate through 11 different pages to generate the problem, navigate 2 pages to generate the problem, and then not s

RE: [PHP] Re: PHP Sessions Question

Thanks Jason, I'll keep the information handy for creating my own session handler in case other options I'm exploring right now don't work. On garbage collection, it happens sometimes within seconds and sometimes within minutes. It tends to occur in batches with lulls of 20 to 30 minutes. So, fo

[PHP] Re: PHP Sessions Question

Ed Lazor wrote: What kind of problems could be happening server-side that would result in PHP sessions randomly disappearing? And, is there a way to log or track this information? Oh, and best of all, any recommendations on solutions? To try logging this, you probably need to make your own sessio

Re: [PHP] PHP Sessions Question

It could be a case that your provider is load balancing across several machines. If they are, and they aren't storing the session data in a central location, then that might account for the issue. That would explain the intermittent failure. The user might be making keepalive requests to the sa

[PHP] PHP Sessions Question

What kind of problems could be happening server-side that would result in PHP sessions randomly disappearing? And, is there a way to log or track this information? Oh, and best of all, any recommendations on solutions? I have a PHP / MySQL application that's been running at a host provider fo

RE: [PHP] Sessions Question

Jake McHenry on Wednesday, October 15, 2003 12:55 PM said: > Once I get a complete list, I can just copy and paste that to all my > files, correct? Yes you can just copy and paste the code. > What happens if I try to call a variable in $_SESSION > that hasn't been

RE: [PHP] Sessions Question

Chris W. Parker wrote: > Jake McHenry > on Wednesday, October 15, 2003 12:39 PM said: > >> Also, say on a separate page, how do I call the variabes stored in >> $_SESSION? Like this? $name = $_SESSION["name"]; > > Yes. But whenever you plan to access $_SESSION you m

RE: [PHP] Sessions Question

> -Original Message- > From: Chris W. Parker [mailto:[EMAIL PROTECTED] > Sent: Wednesday, October 15, 2003 12:01 PM > To: Jake McHenry; [EMAIL PROTECTED] > Subject: RE: [PHP] Sessions Question > > > Jake McHenry <mailto:[EMAIL PROTECTED]> > on Tuesd

RE: [PHP] Sessions Question

> -Original Message- > From: Chris W. Parker [mailto:[EMAIL PROTECTED] > Sent: Wednesday, October 15, 2003 12:01 PM > To: Jake McHenry; [EMAIL PROTECTED] > Subject: RE: [PHP] Sessions Question > > > Jake McHenry <mailto:[EMAIL PROTECTED]> > on Tuesd

RE: [PHP] Sessions Question

Jake McHenry on Tuesday, October 14, 2003 7:00 PM said: > Mainly what my problem is, is that when I turn Register_Globals = Off, > then my scripts stop working. I can't even get past the page I showed > you, the login page. No errors, it's just like I didn't enter an

RE: [PHP] Sessions Question

Mike Brum on Tuesday, October 14, 2003 5:31 PM said: > One quick note - if you're starting a session then you can't user the > header() function afterwards. You'll get the lovel "headers already > sent" error. > > Be sure to use an alternate method of redirection if

RE: [PHP] Sessions Question

On 15 October 2003 05:25, Jake McHenry contributed these pearls of wisdom: > Yes, submit, inout, username and password all come from the > index.php form submission, but username changes throughout the > different pages, that was one of my problems. I'm not sure > what I did wrong before, but once

RE: [PHP] Sessions Question

On 15 October 2003 01:31, Mike Brum contributed these pearls of wisdom: > One quick note - if you're starting a session then you can't > user the header() function afterwards. You'll get the lovel > "headers > already sent" > error. Actually, so long as you do both *before* outputting any actual

Re: [PHP] Sessions Question

On Tue, Oct 14, 2003 at 05:23:54PM -0800, Chris Hubbard wrote: > to use php sessions: > you will need some place where you set up/create the sessions. typically > this is the login page. let's assume you'll use the login page. The logic > for the login page goes something like this: > 1. presen

RE: [PHP] Sessions Question

y Nittany Travel MIS Coordinator http://www.nittanytravel.com > -Original Message- > From: Chris Hubbard [mailto:[EMAIL PROTECTED] > Sent: Tuesday, October 14, 2003 11:37 PM > To: Jake McHenry; [EMAIL PROTECTED] > Subject: RE: [PHP] Sessions Question > > > Jake, &g

RE: [PHP] Sessions Question

YearToShow-5,$YearToShow-4,$YearToShow-3,$YearToShow-2,$YearToS how-1,$YearToShow,$YearToShow+1,$YearToShow+2,$YearToShow+3,$YearToSho w+4,$YearToShow+5); ?> Jake McHenry Nittany Travel MIS Coordinator http://www.nittanytravel.com > -Original Message- > From: Chris Hubbard [ma

RE: [PHP] Sessions Question

Jake, given that I can't see what is in config.php time.php, I'll focus on your index.php. I assume that the issues I point out will be applicable to config and time also. this: if ($_POST["SuBmIT"]) { // make sure posted variables are clean and are the kind you expect if ($_POST

RE: [PHP] Sessions Question

ttanytravel.com > -Original Message- > From: Chris Hubbard [mailto:[EMAIL PROTECTED] > Sent: Tuesday, October 14, 2003 9:24 PM > To: [EMAIL PROTECTED] > Subject: RE: [PHP] Sessions Question > > > Jake, > it would be helpful if we could see your code. > > T

RE: [PHP] Sessions Question

] = $id; $_SESSION["name"] = $data["name"]; $_SESSION["email"] = $data["email"]; header("Location: http://ubb.atlantic-records.com/gallery/admin/index.php";); }else{ // if name and pa

RE: [PHP] Sessions Question

me&inout=$inout\n\n"); } } else { echo "Error: invalid password!"; } } echo <<http://www.nittanytravel.com > -Original Message- > From: Chris Hubbard [mailto:[EMAIL PROTECTED] > Sent: Tuesday, October 14, 2003 9:24 PM > To: [EMAIL PROTECTED

RE: [PHP] Sessions Question

ce. -M -Original Message- From: Chris Hubbard [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2003 9:24 PM To: [EMAIL PROTECTED] Subject: RE: [PHP] Sessions Question Jake, it would be helpful if we could see your code. That said... first you need to identify what information you

RE: [PHP] Sessions Question

Jake McHenry on Tuesday, October 14, 2003 5:00 PM said: [snip] > Can someone point me in the right direction here? I'd love to help you but you did not provide enough information. What exactly are you trying to do and what is it failing? Try showing us the code i

RE: [PHP] Sessions Question

e goes here. } 7. so with all that the pages you want to access session in should have a structure similar to: Hope this is helpful. Chris -Original Message- From: Jake McHenry [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2003 4:00 PM To: [EMAIL PROTECTED] Subject: [PHP] Ses

[PHP] Sessions Question

Hi everyone, I've been trying to set up sessions, but have been having problems. I created an online time clock for my company using php and a mysql database. It's everything that my boss wanted. The only problem is, he told me today that he is planning on selling it to our partners. The actual so

RE: [PHP] Sessions Question

> -Original Message- > From: Bob Irwin [mailto:[EMAIL PROTECTED] > Sent: 27 June 2003 08:01 > > Oops. > > Forgot to remove the Re: - it was a new thread - I just > replied to an old > message to get the php list email address That's exactly what you shouldn't do. Most newsreaders, and

Re: [PHP] Sessions Question

- From: "- Edwin -" <[EMAIL PROTECTED]> To: "Bob Irwin" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Friday, June 27, 2003 2:39 PM Subject: Re: [PHP] Sessions Question > > "Bob Irwin" <[EMAIL PROTECTED]> wrote: > > > A

Re: [PHP] Sessions Question

"Bob Irwin" <[EMAIL PROTECTED]> wrote: > Aside from the fact that bad code can obviously make sessions hackable, what > does everyone think about the security of sessions? > > I rely on them fairly heavily for low-mid range security on some of my > scripts, but if I was to do something that invo

[PHP] Sessions Question

Aside from the fact that bad code can obviously make sessions hackable, what does everyone think about the security of sessions? I rely on them fairly heavily for low-mid range security on some of my scripts, but if I was to do something that involved more sensitive info, are sessions bullet proof

Re: [PHP] Sessions question

Why? You wouldn't even know it happened - nor would the site. This is just a security precaution. - Original Message - From: "Jason Wong" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Saturday, March 22, 2003 2:25 AM Subject: Re: [PHP] Sessions question

Re: [PHP] Sessions question

On Saturday 22 March 2003 08:09, Beauford.2002 wrote: > I don't quite understand this. If a user is on my site and then decides to > go into his favourites and go to yahoo.com - this won't work. I think you > are assuming the user is going to click on something I have set up - I want > this to be i

Re: [PHP] Sessions question

y site. It appears though from the answers I have received - that this is not possible B. - Original Message - From: "Kevin Stone" <[EMAIL PROTECTED]> To: "PHP General" <[EMAIL PROTECTED]> Sent: Friday, March 21, 2003 4:21 PM Subject: Re: [PHP] Sessions que

Re: [PHP] Sessions question

- Original Message - From: "Beauford.2002" <[EMAIL PROTECTED]> To: "Ford, Mike [LSS]" <[EMAIL PROTECTED]>; "'Justin French'" <[EMAIL PROTECTED]>; "PHP General" <[EMAIL PROTECTED]> Sent: Friday, March 21, 2003 12:56 PM

Re: [PHP] Sessions question

lt;[EMAIL PROTECTED]> Sent: Friday, March 21, 2003 11:04 AM Subject: RE: [PHP] Sessions question > > -Original Message- > > From: Justin French [mailto:[EMAIL PROTECTED] > > Sent: 21 March 2003 15:59 > > > > on 22/03/03 2:27 AM, Beauford.2002 ([EMAIL PR

RE: [PHP] Sessions question

nt: Friday, March 21, 2003 9:59 AM > To: Beauford.2002; PHP General > Subject: Re: [PHP] Sessions question > > > I think it's defined as "when the browser is closed", not > "when the browser is no longer in your domain" -- but you'd > have t

RE: [PHP] Sessions question

> -Original Message- > From: Justin French [mailto:[EMAIL PROTECTED] > Sent: 21 March 2003 15:59 > > on 22/03/03 2:27 AM, Beauford.2002 ([EMAIL PROTECTED]) wrote: > > > What about cookies - someone said if you put no time limit > on a cookie it > > dies when you leave the site - I'm not

Re: [PHP] Sessions question

t;[EMAIL PROTECTED]>; "PHP General" > <[EMAIL PROTECTED]> > Sent: Friday, March 21, 2003 2:46 AM > Subject: Re: [PHP] Sessions question > > >> on 21/03/03 4:57 PM, Beauford.2002 ([EMAIL PROTECTED]) wrote: >> >>> I have read some posts to this

Re: [PHP] Sessions question

PROTECTED]>; "PHP General" <[EMAIL PROTECTED]> Sent: Friday, March 21, 2003 2:46 AM Subject: Re: [PHP] Sessions question > on 21/03/03 4:57 PM, Beauford.2002 ([EMAIL PROTECTED]) wrote: > > > I have read some posts to this list on sessions and have read as much as I

Re: SPAM: Re: [PHP] Sessions question

on 21/03/03 6:20 PM, Beauford.2002 ([EMAIL PROTECTED]) wrote: > What about HTTP_REFERER - is there someway I could incorporate it to so if > the user didn't come from xxx (a page on my site) then kill the session and > redirect him to the login page... The referrer can maybe *help* (not sure how

Re: [PHP] Sessions question

on 21/03/03 4:57 PM, Beauford.2002 ([EMAIL PROTECTED]) wrote: > I have read some posts to this list on sessions and have read as much as I > can find on them, but one problem still exists which I can't figure out. How > do I kill the session when the user leaves my site. So if a user is on > www.

Re: [PHP] Sessions question

PROTECTED]> Sent: Friday, March 21, 2003 1:34 AM Subject: Re: [PHP] Sessions question > On Friday 21 March 2003 13:57, Beauford.2002 wrote: > > > I have read some posts to this list on sessions and have read as much as I > > can find on them, but one problem still exists which I ca

Re: [PHP] Sessions question

On Friday 21 March 2003 13:57, Beauford.2002 wrote: > I have read some posts to this list on sessions and have read as much as I > can find on them, but one problem still exists which I can't figure out. > How do I kill the session when the user leaves my site. There is simply no way to tell whe

[PHP] Sessions question

I have read some posts to this list on sessions and have read as much as I can find on them, but one problem still exists which I can't figure out. How do I kill the session when the user leaves my site. So if a user is on www.mine.com and logs in successfully, then goes to www.hers.com - the user

Re: [PHP] Sessions question (-enable-trans-sid)

on 06/06/02 10:20 PM, Jeff Field ([EMAIL PROTECTED]) wrote: > So, it would seem, while the SID being appended to all URI's should work for > all users, non-PHP pages will break the session (not good). And, as for the > cookie method, not all users have cookies enabled for their browser (also, >

RE: [PHP] Sessions question (-enable-trans-sid)

eff Field [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, June 05, 2002 11:56 AM > To: [EMAIL PROTECTED] > Subject: [PHP] Sessions question (-enable-trans-sid) > > > Hi, > > I'm confused about one thing regarding sessions and haven't been able to > find the de

Re: [PHP] Sessions question (-enable-trans-sid)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 * and then 1LT John W. Holmes declared > I guess PHP just can't tell that cookies are enabled. I'm sure the method > isn't full proof. Your sessions get through either way, so what's the big > deal? Mainly in SEO stuff. If an SE like google as a

Re: [PHP] Sessions question (-enable-trans-sid)

TECTED]> Sent: Wednesday, June 05, 2002 4:50 PM Subject: Re: [PHP] Sessions question (-enable-trans-sid) > > Hmmm I've had a problem with this: I have --enable-trans-sid but I > > see url appends on my browser when I *know* cookies are working. > > > Personally I c

Re: [PHP] Sessions question (-enable-trans-sid)

> Hmmm I've had a problem with this: I have --enable-trans-sid but I > see url appends on my browser when I *know* cookies are working. Personally I cant say this is a bad thing... not all browsers enable cookies and they can be messy and insecure at times (eg: cross domain issues). Placing

Re: [PHP] Sessions question (-enable-trans-sid)

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 * and then 1LT John W. Holmes declared > If you compile it with --enable-trans-sid, then PHP will use cookies when > they are available and if they are not, it'll append the SID to links and > forms. Basically, it's automatic. Hmmm I've had

Re: [PHP] Sessions question (-enable-trans-sid)

> To: <[EMAIL PROTECTED]> Sent: Wednesday, June 05, 2002 12:56 PM Subject: [PHP] Sessions question (-enable-trans-sid) > Hi, > > I'm confused about one thing regarding sessions and haven't been able to > find the definitive answer anywhere. Hopefully, I can here. > &

Re: [PHP] Sessions question (-enable-trans-sid)

I'm sure this is not a definitive answer, but I would assume that since you would be passing the information through both the URI and Cookies, it will work regardless of cookies enabled or disabled. On the other hand, if you are passing the session id through the URI in the first place, you do

[PHP] Sessions question (-enable-trans-sid)

Hi, I'm confused about one thing regarding sessions and haven't been able to find the definitive answer anywhere. Hopefully, I can here. There are two ways to enable sessions: 1) Session ID is passed through cookies 2) Session ID is passed through the URL, either done manually or by automatic

Re: [PHP] Sessions Question

> session_register("$refresh"); > session_register("$seconds"); > session_register("$title"); You probably want to remove the $ signs in the above. -Rasmus -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTE

[PHP] Sessions Question

Hope I can explain this. I want to have scripts that will automatically refresh a page entered by the user. So a form will have URL to refresh, seconds to refresh and title of page. I want the page to continually refresh every X seconds. I think I would need two pages that go back and forth betwe

Re: [PHP] Sessions question.

> Is there a way to get the name of each variable in a session? Just walk through $HTTP_SESSION_VARS -Rasmus -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mai

[PHP] Sessions question.

Hello, Is there a way to get the name of each variable in a session? Thanks Brandon -- PHP General Mailing List (http://www.php.net/) To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED] To contact the list administrators, e-mail: [EMAIL PROTECTED]

Re: [PHP] Sessions question

a help me out? Like Music? Buy a CD: http://l-i-e.com/artists.htm Volunteer a little time: http://chatmusic.com/volunteer.htm - Original Message - From: Evelio Martinez <[EMAIL PROTECTED]> Newsgroups: php.general Sent: Monday, February 26, 2001 11:58 AM Subject: [PHP] Sessions questi

[PHP] Sessions question

How can I have an new session id without closing the browser? session.inc contains basically the postgresql session functions (user handler) in http://www.php.net/manual/en/ref.session.php I have change pg_pconnect for pg_connect and I have added pg_destroy_session. 1. There is a login/passw