--- Diana Castillo <[EMAIL PROTECTED]> wrote: > php does it if the user has not disabled cookies and if you remain > on the same server, but if you are changing servers and the user has > disabled cookies
If by changing servers you mean the user visits a different domain, then passing the session identifier on the URL is your only option. Thus, the user may not have cookies disabled; you simply can't create a cookie that can be read by multiple domains. > you have to store the session id and then reset your session id to > that one. I'm not sure what you're trying to say here, but I suspect that your assumption is incorrect. Hope that helps. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security Handbook Coming mid-2004 HTTP Developer's Handbook http://httphandbook.org/ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
