I use a server where the PHP session.use_trans_sid is set to 0. For the application I develop, I must pass the session ID given by the login process in each page of this application where resides a session var test for entrance validation. The server administrator set the session.use_trans_sid for security reason, but in this case the PHPsessionID is present in each url of the application so the security level is broken.
So, i'm looking for an another way to pass sessionID in each PHP files of my application where sessionID can't be visible.
Does someone knows how to go round of the session.use_trans_sid set to 0 without putting the SID in each url of my application ?
Thanks !
