Question on passing $_POST

PHPGuru2

Is there any other way to pass $POST variables using header() function or something else besides using other $REQUEST ($GET, $COOKIE, or $_SESSION)??

If some $_POST variables are set,

header("xxx.php");

This won't carry data in $_POST to xxx.php page.

if $POST contains too many values, then $GET doesn't work since it has a limitation that can be embed in URL.

$_SESSION is the easiest way to store, but I use custom session handler that stores session in the database, so I would like to save as much select query calls as possible to avoid reaching max query limitation.

$_COOKIE doesn't work if data is submitted over SSL from regular http since domain name is different (mydomain.com and xxx.powweb.com/~username/) and it is not reliable because there is a chance that users have their cookie disabled.

So is there any other way??

osusano

why dont u try like this

header("xxx.php?var=1&var2=2&var3=3");

just pass all your post to the var and read it again to your xxx.php

HalfaBee

If you are handling sessions using mysql, why don't you save the $_POST info in a file using the session id. You can then read the file on the next page.

HalfaBee

PHPGuru2

You mean save only session id in the database and everything else in the text file?? so

if(is_file(session_id()))
{
blah blah blah // read info from the text in some format
}

I currently save everything, even the data in the database.
I cannot use (or risk using) header("xxx.php?var=1&var2=2&var3=3") kind because if the URL is too long then, some of them are omitted.

Weedpacket

Originally posted by PHPGuru2
You mean save only session id in the database and everything else in the text file?? so

No, save the variables you're trying to pass in the session array - that's what it's there for. If they're already in the database, you don't need to pass them, do you?

HalfaBee

Do sessions survive over a change in domain?

HalfaBee

PHPGuru2

If SSL is given to you by your host and is mapped to the same directory (your account folder) then yes, session can be passed even if the domain name changes.

http://www.yourdomain.com/
https://subdomain.yourhostdomain.com/~youraccount/

HalfaBee

Sessions only work over the two domains if you pass the session id in the url.

If you rely on cookies it will not work.

Halfabee

TMX

This is a bit non-standard, but i think the easyiest way to do it is to use an include() statement rather than a header() statement.

This does exactly the same job aside from the redirecton part, and there is not need to fiddle about with transmitting variables;

this makes it many times more secure.

Anyone disagree why this is not a good course of action, reply below.

superwormy

I use TMX's method. Another option might be to store the information in the database, and just pass a session ID

header ("Location: /page.php?sid=SESSION_ID_OF_RECORD_IN_DATABASE");