Posted by OmegaJunior on 02/03/07 14:08

On Sat, 03 Feb 2007 04:41:52 +0100, sid <sidwelle@alexian.net> wrote:

> On Feb 2, 1:52 pm, OmegaJunior <omegajun...@spamremove.home.nl> wrote:
>> On Fri, 02 Feb 2007 18:22:44 +0100, sid <sidwe...@alexian.net> wrote:
>> > On Feb 2, 1:59 am, OmegaJunior <omegajun...@spamremove.home.nl> wrote:
>> >> You can set the session
>> >> configurations to use nothing but cookies; that way it won't ever
>> try to
>> >> create a sessionid in the url. Then you can create a cookie on a
>> front
>> >> page which you check on a subsequent page, to see whether or not the
>> >> client accepts cookies. If they don't, ask them to allow their
>> browser
>> >> to
>> >> accept cookies for your web site. Would they do that? Yes, if they
>> value
>> >> their security. (Not that it's very secure by itself, but it's a
>> start.)
>>
>> > Can you tell me what keysnames to check ?
>>
>> > I don't believe that the browser I was using prohibits cookies from
>> > being set.
>> > What criteria does it use to determine if cookie are enabled or not ?
>>
>> > Sid.
>>
>> You invent the keynames yourself. There are some reserved ones. I tend
>> to
>> use something like "myApp_cookiecheck" where I replace "myApp" with an
>> acronym of the web site where I use it, and simply set the cookie to 1.
>>
>> When a subsequent page tries to load the cookie (using
>> $_COOKIE['myApp_cookiecheck']) and can't read it, you can be pretty sure
>> the browser rejected the cookie. But why it rejected it, is worth a
>> study
>> in and of itself.
>>
>> You may want to take a look
>> athttp://nl3.php.net/manual/en/function.setcookie.php
>>
>> --
>> Using Opera's revolutionary e-mail client:http://www.opera.com/mail/-
>> Hide quoted text -
>>
>> - Show quoted text -
>
> What you are describing is sending a test cookie. I thought the other
> post was talking about a setting in the PHP.ini that would prevent the
> SessionId from being appened to the URL. I wanted to know how the
> server determines that cookies are not being accepted and chooses to
> append the URL. I thought what was being described was the server
> determins that cookies are not being accepted and appends the URL on
> its own, not by code from a script. This is kind of the behavior that
> I am observing. I see the Session on the URL and I didn't put it
> there.
>
> Sid.
>

Ah, sorry for the misunderstanding. Let's copy something from a recent
appliction of mine:

ini_set('session.use_trans_sid', 0);
ini_set('session.use_cookies', 1);
ini_set('session.use_only_cookies', 1);
ini_set('session.cookie_httponly', 1);

Hope this helps!

--
Using Opera's revolutionary e-mail client: http://www.opera.com/mail/

[Back to original message]