Use only cookies for sessions (not working)

czamora

Hi,
I want to configure my scripts to use only cookies for sessions (so that session ids don't get embedded into urls). In theory you can set the session.use_only_cookies to '1' for this purpose.
I've tried that in the .htaccess file adding the following line:

php_value session.use_only_cookies 1

And I have also tried inside my php script with:

ini_set('session.use_only_cookies', '1');

as the first line (well before session_start(); )

In both cases I still get the session id embedded into the links of the first page displayed on the generated page.

Why is this so? Shouldn't it work like that? Am I missing something here?

Thanks a lot for any help.

macosxguy

In my php.ini file, use_trans_sid comes after use_only_cookies, so you might want to make sure use_trans_sid is set to 0. That might be it.

czamora

Hey, thanks a lot!
That seemed to work!
I guess my host company had session.use_trans_sid explicitely set to 1 (because the default is 0)

The thing is the lines:

php_value session.use_only_cookies 1
php_value session.use_trans_sid 0

in the .htaccess did the trick.
Thanks a lot again.