Posted by Bret Hughes on 02/17/05 06:51

On Wed, 2005-02-16 at 19:07, b1nary Developement Team wrote:
> Hi there guys... First time caller here ;).
>
> I'm currently developing a content management system. One of it's
> features is that it's going to be completely standards compliant (XHTML
> 1.1).
>
> I'm having some troubles however, and they come in the form of
> sessions. When I use session_start(), it throws the PHPSESSID into the
> URL of all of my links and form actions and what not. This is a problem
> because in my forms it throws in a hidden input, which doesn't validate
> right, plus they don't use & insteand of just &. Is there any way
> to stop a session from being passed through the URL?
>

Sure enable session.use_only_cookies in php.cfg and cookies will be
used. nothing in the page sent to the browser at all as far as I know.

http://us4.php.net/session

Bret
> --
> PHP General Mailing List (http://www.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub.php

• Next in thread: Re: XHTML 1.1 + php sessions = :(
• Prev in thread: Re: mediator between PHP and Perl (with sessions)
• Next in forum: Re: [PHP] Getting floats from 8 byte IEEE binary representations
• Prev in forum: Re: [PHP] Password Protection
• Thread view: Sessions

[Reply to this message]