Cookie/Session Tester

scrupul0us

<?php
//BEGIN DETECT.PHP
/**
 * @author: BRIAN ELLWOOD
 * @version: 1.4
 * @copyright: NOPE
 * @description: DETECT COOKIE/SESSION CAPABILITY
 */
###COOKIES###
//CHECK TO SEE IF THE COOKIE ALREADY SET
if (!isset($_COOKIE['TEST']))
{
	if (!isset($_GET['ct']))
	{
	setcookie("TEST", "TEST",time()+3600);
	header("Location: detect.php?ct=y");
	}
}
//CHECK TO SEE IF WE CAN LOAD THE COOKIE
if (isset($_COOKIE['TEST']))
{
	echo "COOKIES WORK :)";
	setcookie("TEST", "",time()-3800); 
	/*THIS IS WHERE YOUR ACTION WOULD BE IN LOADING ANOTHER PAGE
	OR PROVIDING MORE PROCESSING. DONT FORGET THE EXIT TO CLOSE
	THE PROCESSING LOOP*/
	exit(); 
}
###SESSION COOKIES###
//CHECK TO SEE IF SESSION VARIABLE ALREADY EXISTS
if (!isset($_SESSION["TEST"])) 
{
	if (!isset($_GET['st']))
	{
	session_start(); //START THE SESSION
	$_SESSION["TEST"] = "TEST"; //SET A SESSION VARIABLE
	header("Location: detect.php?ct=y&st=y&id=".session_id());
	}		
}
//CHECK TO SEE IF WE CAN LOAD THE SESSION VARIABLE
if (isset($_SESSION["TEST"]))
{
	echo "SESSION COOKIES WORK :)";
	/*THIS IS WHERE YOUR ACTION WOULD BE IN LOADING ANOTHER PAGE
	OR PROVIDING MORE PROCESSING. DONT FORGET THE EXIT TO CLOSE
	THE PROCESSING LOOP*/
	exit();
}
###SESSION ID###
else
{
	session_id($_GET["id"]);
	session_start();
	if (isset($_SESSION["TEST"]))
	{
		echo "SESSIONS WORK BY PASSING THE SID";
		/*THIS IS WHERE YOUR ACTION WOULD BE IN LOADING ANOTHER PAGE
		OR PROVIDING MORE PROCESSING. DONT FORGET THE EXIT TO CLOSE
		THE PROCESSING LOOP*/
		exit();
	}
	else
	{
	echo "If you've made it here then neither 
	sessions or cookies are working in any 
	form/shape/matter. Time to use a database or
	someother method. Sorry :(";
	}
}
//END DETECT.PHP
?>

MarkR

I recommend you set the cookie for a lot more than 5 seconds, because there is a high probability that the client's clock is more than 5 seconds ahead of the server- which would result in a false negative.

Mark

scrupul0us

i think thats a valid point... i guess my thought was my server created the time stamp that was placed in the cookie so therefore it wouldn't matter... but i see where u are going with that... i think

so lets say my server thinks its midnight and the client thinks its 1am... if i set a cookie to expire @ 12:30am then according to the client the cookie has already expired??? what actually sets the "clock" on a cookie... the client or the server?

Weedpacket

The server sets the time, but the client is the one that checks to see if it has expired while deciding whether or not to send it back to the server.

scrupul0us

maybe i need to grab the clients time pass it to my server then build the cookie expiration... although i guess i dont even need the timestamp... once i know cookies work i can just delete the cookie in the "cookies work" routine, so the amount of time its set for doesnt matter

EDIT: initial post updated

aside from that cookie deal does it look pretty solid?