sessions()

Anon

If I use sessions to track my visitors when I append it to the url should it show on the user's browser. I am using a joining page but when it clicks to go through to the next page (update) I get the link with the (?) but nothin else.

ie header( "Location: update.php?".SID );

so all i see is http://web_site/update?

is this correct or should I see

update?session%5Blogged_in%5d=1&session5Bid=1 bla bla bla

So if I am correct what setting should I change the php.ini file.

Please help

Lee

lawnmowerman

The SID constant is only populated when session cookies are not enabled.

You should probably use $PHPSESSID instead in the following way:

print header( "Location: update.php?PHPSESSID=" . PHPSESSID );

Session IDs look like:
"f08b925af0ecb52bdd2de97d95cdbe6b"

No data is actually stored in the session ID. The ID is a "pointer" to the data stored on the server.

-Rich

Anon

Im trying to make sessions without cookies and runnning into error about cache limiters and cookie headers already being sent. The bizarre thing is that apart frmo the error messages the code basically works.

any ideas?

Anon

Dear Rich,

I'd be thankful if you could answer my question.
I have a 2 file frameset: up/down sides which refreshes each 10 seconds.

In the upper I start a session and register variables. What commands should I use in the other file so that it takes the same session? When I use another "session_start()" in the first 2 refreshments there are 2 different sessions in my frame then it becomes ONE itself.

Thank you

Zoro

Anon

i learn't the hard way that the sessions are best handled by a totally separate file that is called once per load, say by the file that the frames are in, then you won't have the problem of multiple session_start() running all over the place.

This may be tricky depending upon what you are trying to do exactly.... if the variables need to change regularly you could put a switch in the session file so that under certain calls it will make some variables globals and registered in thh session.

andymw

Mike,

I've been struggling with the exact same problem for over a week and finally cracked it!

My html editor inserts <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> in the first line of a page causing the "headers already sent" message. You just need to have the php code right at the start of the page before this and body tags etc.

Here's an example of a couple of pages to demo password collection:

Code for s1.php >>>

<?php
$username = "myname";
$password = "mypass";
session_register("username","password");
?>

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<head><title>Untitled</title></head><body><h1>Session1</h1>

<?php
$session=session_id( );
echo "$session\n";
?>

Code for s2.php >>>

<?php
session_start( );
?>

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<head><title>Page 2</title></head><body>
<h1>Session</h1>

<?php
echo "User: $username Password: $password \n";
?>

</body>

p.s. this code assumes the session id is automatically appended to the link url. Hover your mouse over the hyper link to see if your server has done this.

Andy W

bernicusmaximus

Gurus,

Can anyone explain to me the reasons for not using $HTTP_SESSION_VARS/$SESSION when register globals is disabled. Also, it seems that $HTTP_SESSION_VARS/$SESSION is prefferred over the session_register() method for security reasons. Why is this? I understand how sessions should work, but I am failing to understand how they do work with globals and what not. If anyone understands where my confusion lies, and how I may be cured of it, I would appreciate the help.

Thanks a bunch,

Bernie

Anon

Thank you Andy,
I was facing a similar problem and should be able to patch things up with the info you provide.
Hoping your day is as good as mine
Simon Lachance