Posted by axlq on 08/10/07 16:31

In article <46bc8925$0$25485$9a622dc7@news.kpnplanet.nl>,
amygdala <noreply@noreply.com> wrote:
>
>"amygdala" <noreply@noreply.com> schreef in bericht
>news:46bc8754$0$25476$9a622dc7@news.kpnplanet.nl...
>> Hello all,
>
><snip>
>
>PS.: I forgot to mention that, before redirecting, I *do* let PHP perform a
>session_write_close().

Why? Are you using framesets? If so, why?

I do something similar on my site, and I use Opera to test. A
user gets a session cookie when first accessing any page on my
site. As long as the $_SESSION array contains no login information,
some content is restricted; any attempts to access that restricted
content go to a login page. As soon as the user logs in, $_SESSION
contains data proving that the user is logged in. $_SESSION also
contains the last page visited and next page requested, at all
times, so it's trivial to direct the user to the proper page after
logging in, using header("Location: http://example.com/xyz.php?a=b");

This works for me in Opera. At *no* time do I attempt to close the
session. That happens only when the user logs off, in which case I
delete the session.

-A

[Back to original message]