Suggestions to use $HTTP_POST_VARS

fabiuz

Hi,

so I understand that on PHP 4.2 and later I need to upgrade my coding by use $HTTP_POST_VARS to get values from variables.

I was used to pass variables values trought html code like:

<a href="file.php?var1=1&var2=$value">Click</a>

I see that also this is no good anymore...

So, which is the right way ?

I am thinking to use sessions and save values there troguth pages...is this the way ?

session_start();
session_register('var1');
session_register('var2');

$var1 = 1;
$var2 = $_POST['value'];

Is this ok or there are security problems ?

Thanks !

Fabi

wizkid

Originally posted by fabiuz
[...] I was used to pass variables values trought html code like:
<a href="file.php?var1=1&var2=$value">Click</a> [...]

Hi,

I think that [FONT=courier new]$HTTP_GET_VARS[/FONT] will still contain [FONT=courier new]$var1[/FONT] and [FONT=courier new]$var2[/FONT].

wizkid

MrAlaska

Version 4.2 or later it is actually rcommended you use $POST, $GET, etc, not $HTTP*VARS but you might want to include them for backward compatibility. You can asign variables at the top of your page to make it easier to work with them:

if (isset($POST['var'])){
$var=$POST['var'];
} else $var="";

session_register(), session_is_registered() should disappear from your scripts entirely.

use session_start() then access and set your variables through the $_SESSION array:

$_SESSION['var']='var';

if (isset($SESSION['var'])){
$var=$SESSION['var'];
} else $var="";