> % The most common method is plain cookies. But if you want guaranteed
> state,
>
> Sure, but I know that cookies won't work, so that rules them out.
Won't work, or you don't want to use them?
> % So, this rules out a complaint about complicated URLs, because you
don't
> % have to type them.
on 07/10/02 7:18 PM, David T-G ([EMAIL PROTECTED]) wrote:
> % re-write any relative URLs in your pages to include the session ID... it's
>
> So I can code without having to put the ID on the URLs myself? So the
> "transparent"-ness is for the programmer? Well, I do like that...
Yes.
> % So
Justin, et al --
...and then Justin French said...
%
% on 07/10/02 11:32 AM, David T-G ([EMAIL PROTECTED]) wrote:
%
% > It's a start; it confirms some of what I think I understand about
% > sessions. Now if only I can get the session ID out of the URL without
% > using any cookies... Any idea
John, et al --
...and then John W. Holmes said...
%
% You can pass the session ID in a form, too. Just use POST, and make it a
% hidden element passed to the next page.
Yeah, I figured that.
%
%
%
% It's no different than passing it in the URL. I hope you're not thinking
Except the URL i
on 07/10/02 11:32 AM, David T-G ([EMAIL PROTECTED]) wrote:
> It's a start; it confirms some of what I think I understand about
> sessions. Now if only I can get the session ID out of the URL without
> using any cookies... Any ideas, anyone?
I Thought I made it clear, but I'll try again :)
Yo
t; Cc: Justin French
> Subject: Re: [PHP] sessions without cookies *or* URLs
>
> Justin, et al --
>
> ...and then Justin French said...
> %
> % I think you're under a little misconception about how sessions are
used.
>
> Perhaps. I'm new to them :-)
>
Justin, et al --
...and then Justin French said...
%
% I think you're under a little misconception about how sessions are used.
Perhaps. I'm new to them :-)
% Maintaining a session is simply just having a unique identifier for each
% "user", so that the server can recognise the user from pag
I think you're under a little misconception about how sessions are used.
Maintaining a session is simply just having a unique identifier for each
"user", so that the server can recognise the user from page to page,
maintaining state.
Typically this is done by passing a session id around in he UR
You need to start the session before any html. So:
Cheers!
Rick
"Too much caution is bad for you. By avoiding things you fear, you may let
yourself in for unhappy consequences. It is usually wiser to stand up to a
scary-seeming experience and walk right into it, risking the bruises as hard
> maintain state accross requests. This is done in 3 different ways.
> 1. Cookies
> 2. URL Mangling
> 3. HTTP Authentication
#4 Passing a SID/Session info in hidden fields, but it means
you must push every page move through a submit (which can be
done with Javascript, image buttons, etc), dep
> You're missing one method - using the user's IP address
> It's not a guaranteed fool-proof method, but if you don't
> want to use cookies or the URL, then this sorta works.
Unless there's a firewall using NAT or a proxy cache involved. I know
for a fact that our internal network only ever
Senior Software Engineer
ePliant Marketing
-Original Message-
From: Rasmus Lerdorf [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, May 14, 2002 6:26 PM
To: Matthew Walker
Cc: [EMAIL PROTECTED]
Subject: RE: [PHP] Sessions Without Cookies or SID Passing...
> Could you explain how this could be acc
to:[EMAIL PROTECTED]]
Sent: Tuesday, May 14, 2002 5:30 PM
Cc: [EMAIL PROTECTED]
Subject: RE: [PHP] Sessions Without Cookies or SID Passing...
If it ain't foolproof then only a fool would use it ...
IP addresses are just about the worst way to identify anyone.
-Original Message-
From:
TECTED]
Subject: RE: [PHP] Sessions Without Cookies or SID Passing...
You're missing one method - using the user's IP address
It's not a guaranteed fool-proof method, but if you don't want to use
cookies or the URL, then this sorta works.
--
PHP General Mailing List (http://
> Could you explain how this could be accomplished, because I'm not
> understanding how to do it.
>
> As I understand HTTP Authentication (correct me if I'm wrong), the
> user's computer still has to send a 'username/password' pair to perform
> the authentication. I can't see how this could be use
-Original Message-
> From: Rasmus Lerdorf [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, May 15, 2002 10:04 AM
> To: Matthew Walker
> Cc: [EMAIL PROTECTED]
> Subject: RE: [PHP] Sessions Without Cookies or SID Passing...
>
>
> I am understanding the problem perfectly. HTTP i
ew Walker
Cc: [EMAIL PROTECTED]
Subject: RE: [PHP] Sessions Without Cookies or SID Passing...
I am understanding the problem perfectly. HTTP is stateless. You want
to
maintain state accross requests. This is done in 3 different ways.
1. Cookies
2. URL Mangling
3. HTTP Authentication
You said
10:04 AM
To: Matthew Walker
Cc: [EMAIL PROTECTED]
Subject: RE: [PHP] Sessions Without Cookies or SID Passing...
I am understanding the problem perfectly. HTTP is stateless. You want to
maintain state accross requests. This is done in 3 different ways.
1. Cookies
2. URL Mangling
3. HTTP Authenti
On Tue, 14 May 2002, Matthew Walker wrote:
> The sites are not dynamic, but the shopping cart /is/. The problem is,
> if people don't have cookies on, when they return to the site to order
> more products, they loose the SID that has been appended to the links
> inside the cart, and thus loose the
customer's OrderID is, and other related information.
>
> Matthew Walker
> Senior Software Engineer
> ePliant Marketing
>
>
> -Original Message-
> From: Rasmus Lerdorf [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, May 14, 2002 5:42 PM
> To: Matthew Walker
om: Rasmus Lerdorf [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, May 14, 2002 5:42 PM
To: Matthew Walker
Cc: [EMAIL PROTECTED]
Subject: Re: [PHP] Sessions Without Cookies or SID Passing...
Use standard HTTP authentication over SSL - that's the only other way.
On Tue, 14 May 2002, Matthew Walker wrot
alker
Senior Software Engineer
ePliant Marketing
-Original Message-
From: Miguel Cruz [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, May 14, 2002 5:48 PM
To: [EMAIL PROTECTED]
Subject: Re: [PHP] Sessions Without Cookies or SID Passing...
On Tue, 14 May 2002, Matthew Walker wrote:
> Man
On Tue, 14 May 2002, Matthew Walker wrote:
> Many of the people who will be shopping on our sites have cookies
> disabled, which presents a problem when using sessions. Now, I am aware
> of the fact that we could append the SID constant to every URL, but this
> will not work for us. None of our si
Use standard HTTP authentication over SSL - that's the only other way.
On Tue, 14 May 2002, Matthew Walker wrote:
> We have a shopping cart product we're developing in PHP, and I've
> recently come across I dilemma that I need to find a reliable solution
> to.
>
> Many of the people who will be
You can use URL mode for PHP4 session if you want session w/o cookie.
How about read this link?
http://www.zend.com/zend/tut/session.php
--
Yasuo Ohgaki
"duirfire" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi, can someone point me toward a tutorial tha
> How can you get something like:
>
> header ("Location: $PHP_SELF?");
>
> to redirect with the sessid in the url? In my tests, it redirects, but
> does not append the sessid.
>
> I have compiled with --enable-trans-sid. Transparent sid is working, I
> can use it on links like:
>
> ">
>
> and it w
> Would there be any point in using php sessions if you aren't using
cookies?
> You have to store login info anyway, why not just use a temp table to
store
> transaction info and write to the database at the end of a session? From
> what I've read on sessions, you have to use cookies
> thanks
You
if yours only storeing one or two variables in a db, dont mind writing
either functions to store all this in the db, or having 5-10 lines of code
per page to this then fine. But sessions are so simple...
three lines of code, I can store text, arrays, class's all in three lines of
code, four if
28 matches
Mail list logo
