Session Cookie.. where is it?

twilson

This probably isn't a smart question because I don't want anyone to know where it is. 🙂

BUT, I do want to know this. I looked (searched) through my cookie directory and could not find a cookie containing my URL for the site I am making using cookies. Does the browser store sensitive session cookies elsewhere? Or is it just encrypted?

Thanks,
Tom

stolzyboy

session cookies aren't stored on your computer, they are stored on the server that the page is running on(in a tmp directory normally), and if they are working correctly, they delete themselves either when you tell them to with session_destroy() or when you close the browser

twilson

Errm... I mean the cookie with the Session ID in it, since I'm not passing it in the URL.

Thanks,
Tom

stolzyboy

are you only using session_start() or are you using setcookie(), if you are using session_start(), then it is as described, if not, it is in the cookies folder where IE would store them, different on each OS

twilson

I'm not using setcookie, but I'm not passing it in the URL either. I assume the flag in php.ini (session.use_cookies - boolean -
session.use_cookies specifies whether the module will use cookies to store the session id on the client side. Defaults to 1 (enabled).) is ON. The session ID has to be stored somewhere on my computer, how else would it know page to page if it's not being passed in the URL? It's not in my Cookies folder though!

Where is it?! 🙂

Thanks,
Tom

stolzyboy

so you are using session_start(), then the session ID is stored on the server until the session is killed, either by you closing the window or a script doing so, it will not be placed on your computer if you don't use setcookie(), that is the wonderfulness of a session and session ID, why do you want to access this anyway, maybe there is an alternative method

xblue

cookies only need to be written to disk if the are supposed to be persistent.

the cookie lifetime is set in php.ini as well. increase it, and you should see the cookie in your cookie folder as any other.