|
|
Posted by sid on 02/03/07 16:21
On Feb 3, 8:08 am, OmegaJunior <omegajun...@spamremove.home.nl> wrote:
> On Sat, 03 Feb 2007 04:41:52 +0100, sid <sidwe...@alexian.net> wrote:
> > On Feb 2, 1:52 pm, OmegaJunior <omegajun...@spamremove.home.nl> wrote:
> >> On Fri, 02 Feb 2007 18:22:44 +0100, sid <sidwe...@alexian.net> wrote:
> >> > On Feb 2, 1:59 am, OmegaJunior <omegajun...@spamremove.home.nl> wrote:
> >> >> You can set the session
> >> >> configurations to use nothing but cookies; that way it won't ever
> >> try to
> >> >> create a sessionid in the url. Then you can create a cookie on a
> >> front
> >> >> page which you check on a subsequent page, to see whether or not the
> >> >> client accepts cookies. If they don't, ask them to allow their
> >> browser
> >> >> to
> >> >> accept cookies for your web site. Would they do that? Yes, if they
> >> value
> >> >> their security. (Not that it's very secure by itself, but it's a
> >> start.)
>
> >> > Can you tell me what keysnames to check ?
>
> >> > I don't believe that the browser I was using prohibits cookies from
> >> > being set.
> >> > What criteria does it use to determine if cookie are enabled or not ?
>
> >> > Sid.
>
> >> You invent the keynames yourself. There are some reserved ones. I tend
> >> to
> >> use something like "myApp_cookiecheck" where I replace "myApp" with an
> >> acronym of the web site where I use it, and simply set the cookie to 1.
>
> >> When a subsequent page tries to load the cookie (using
> >> $_COOKIE['myApp_cookiecheck']) and can't read it, you can be pretty sure
> >> the browser rejected the cookie. But why it rejected it, is worth a
> >> study
> >> in and of itself.
>
> >> You may want to take a look
> >> athttp://nl3.php.net/manual/en/function.setcookie.php
>
> >> --
> >> Using Opera's revolutionary e-mail client:http://www.opera.com/mail/-
> >> Hide quoted text -
>
> >> - Show quoted text -
>
> > What you are describing is sending a test cookie. I thought the other
> > post was talking about a setting in the PHP.ini that would prevent the
> > SessionId from being appened to the URL. I wanted to know how the
> > server determines that cookies are not being accepted and chooses to
> > append the URL. I thought what was being described was the server
> > determins that cookies are not being accepted and appends the URL on
> > its own, not by code from a script. This is kind of the behavior that
> > I am observing. I see the Session on the URL and I didn't put it
> > there.
>
> > Sid.
>
> Ah, sorry for the misunderstanding. Let's copy something from a recent
> appliction of mine:
>
> ini_set('session.use_trans_sid', 0);
> ini_set('session.use_cookies', 1);
> ini_set('session.use_only_cookies', 1);
> ini_set('session.cookie_httponly', 1);
>
> Hope this helps!
>
> --
> Using Opera's revolutionary e-mail client:http://www.opera.com/mail/- Hide quoted text -
>
> - Show quoted text -
I will try this on Monday. Do these settings persist across all pages
and sessions or just the immediate session ?
Navigation:
[Reply to this message]
|