[RESOLVED] what is the best way to pass variables between pages?

cneeds

In your opinion what is the best way to pass variables between pages?

I'm storing everything in $_COOKIE but it's really quite messy.

On the other hand I can't get $SESSION or $SERVER to work.

Has anybody written a definitive paper on how best to track variables between pages? It will be good for me to read that before I go too much further.

Chris

johanafm

Start by reading about session at php.net. You can easily find tutorials on session handling by googling for "php session tutorial". To use session variables, you must first call session_start.
$SERVER has nothing to do with passing variables back and forth between browser and server. It deals with other things, such as what url was called, if http or https is used etc.
$SESSION doesn't really pass data back and fourth. There is only a session cookie sent to the client, which is then sent back to the server so that the server can keep track of which user this is. The session array elements are then initialized by php.
You can also use query string parameters, which are name/value pairs at the end of the url. I.e. http://example.com?name1=value1&name2=value2. These end up in the $_GET array with the names as array keys. Just remember that if you create links containing a query string, "&" should not be used, but rather it's html entity counterpart "&", and the names and values should be urlencoded.

cneeds

johanafm;10963871 wrote:
You can also use query string parameters, which are name/value pairs at the end of the url

Thank you Johan, I already know about this stuff. I was hoping that there was a neater way that didn't require so much messy housekeeping. Passing data as query string parameters lets the whole world see what you're doing.

You didn't mention $_COOKIE. Is it for this or was it designed with other purposes in mind?

Chris

NogDog

As johanafm said, if you use PHP sessions, you don't have to pass all the data around. The only thing that gets passed to the client and back to the server is the session ID cookie, and that is handled by the session_start() function. All you need to do then is save the desired data in the $_SESSION array, and retrieve it from there when needed. Just add session_start() at the beginning of each and every page that needs to save and/or read that data. Note that session_start() must appear before anything -- including text not withing <?php...?> tags -- is output to the browser.

johanafm

cneeds;10963911 wrote:
You didn't mention $COOKIE. Is it for this or was it designed with other purposes in mind?

Well, I suppose they were indeed ment to pass data to and from the browser, but since $SESSION usually gives you everything you need by using nothing but a session cookie (which you don't set manually, it's handled by session_start()), there is rarely, if ever, need for ordinary cookies. Moreover, some browsers lets users disable normal cookies while still allowing the session cookie.

Also, on every request to your server, all cookies are sent along in the request. Separate requests are made for css files, js files and all <img> elements among other things...

The only advantage for cookies are that they can be accessed directly through javascript, with the restriction that they need to follow the "same origin policy". But you can circumvent this need for cookies by using php scripts instead of plain .js files to make your session data accessible from js.
file.js.php

<?php
session_start();
?>
/*
    js code...
*/

// need some of your session data here
<?php
$var = isset($_SESSION['var']) ? $_SESSION['var'] : '';
echo 'php_session_var_as_js_var = ' . $var .';';
?>
alert(php_session_var_as_js_var);

<script type="text/javascript" src="/file.js.php"></script>

But do keep in mind that js files (even if they end with .php) will be cached by the server, so if you do update them you'd need to change the src="", possible by adding a querystring timestamp of the last change.
Otherwise, you can keep your session data in the head section of the page instead

<html>
<head>
<script type="text/javascript">
<?php
$var = isset($_SESSION['var']) ? $_SESSION['var'] : '';
echo 'php_session_var_as_js_var = ' . $var .';';
?>
</script>
<script type="text/javascript" src="file_that_needs_the_above_var.js"></script>
</script>

cneeds

I resolved the problem by putting a path statement of "/" in my set cookie calls!!

Thanks for the help everyone.

Chris