James Ellis wrote:
There is a setting in your php.ini file to turn off auto propagation of your session id's via URLs (enable_trans_sid I believe). This is good for validation (if you are having & problems in URLs) and very good for security.
Correct me if i'm wrong, but: without trans_sid, any browser that does not support cookies (e.g. lynx and co) will not be able to keep a session alive. With regards to accessbility, I'd shy away from this (of course, if all you're doing is storing information for non mission-critical fluff like stylesheet switcher info and similar, this is not a big deal).
Same thing if users are rejecting the cookie (either knowingly or because of some draconian IT department's settings on their browser).
Patrick H. Lauke _____________________________________________________ re·dux (adj.): brought back; returned. used postpositively [latin : re-, re- + dux, leader; see duke.] www.splintered.co.uk | www.photographia.co.uk http://redux.deviantart.com
****************************************************** The discussion list for http://webstandardsgroup.org/
Proud presenters of Web Essentials 04 http://we04.com/ Web standards, accessibility, inspiration, knowledge To be held in Sydney, September 30 and October 1, 2004
See http://webstandardsgroup.org/mail/guidelines.cfm for some hints on posting to the list & getting help ******************************************************
