File download using header(), over SSL

merkinmuffley

wondering if anyone has come across this problem...
I've got a web-based report that is downloadable into a .csv file for Excel. The script that sends the data for download goes something like this:

include class definitions;
session_start();
initialize some objects from database-level classes;
header("Content-Disposition: attachment; filename=\"report.csv\"");
header("Content-type: application/octet-stream");

// start echoing report data
echo '"Here","Are","The","Column","Headers"' . "\n";
...

This works great until we tried to do it over SSL. Seems like there's a problem with the headers, because it works when you remove the call to session_start(). Using MSIE 5.5 on windows.

fschaper

This is a bug in IE which won't cache data via SSL if headers like pragma : no-cache or cache-control : no-cache are send. However to download a file Internet Explorer writes to a cache first ...

To solve this you will have to call session_cache_limiter('public');
before session_start(). Then the content is allowed to be cached and everything works out fine ...

Reference:
http://php3.de/manual/en/function.session-cache-limiter.php

Thanks to simon for filling the gaps .)

merkinmuffley

sure enough, that did the trick. many thanks.