Re: [PHPLIB-DEV] Incompatible change to active_sessions and auth_user From: Adam N. Thompson, MCNE (athompso <email protected>)
Date: 11/06/99

Kristian Koehntopp wrote:
> I propose an incompatible change to PHPLIB which will require
> both, active_sessions and auth_user to be change. The change
> will obviate the need for both active_sessions_split and
> auth_user_md5. It will break the new_user.php3 and
> view_sessions.php3 scripts, both of which will be rewritten
> anyway.

If we're talking about incompatible changes anyway, perhaps we should
rip out the support for multiple encoding modes? I don't see this as a
feature, except to support backward compatibility - which is why I put
it in there initially, so people could avoid blowing away the contents
of active_sessions when they upgraded.

Changing the table structure kinda forces the issue of blowing away
active session data, so there isn't much of a backward compatability
issue anymore.

The base64 encoding is fine, I think, for all purposes. It avoids
backslash-related issues entire, as far as I can tell.

Suggestion/speculation: in ct_sql.inc, should we check the current
*_magic_quotes settings and adjust accordingly? We've been having
problems here because some websites have gpc_magic_quotes turned on,
some don't. Or, maybe this belongs in session.inc... thoughts?

-Adam 

-- 
Adam Thompson, MCNE, MCSE, CWT, A+
Vice-President / Chief Technology Officer, Commerce Design Inc.
<athompso <email protected>>
tel: (204) 942-1648, fax: (204) 989-8080, cell: (204) 782-6198
-
PHPLIB Developers Mailing List. Send messages to <phplib-dev <email protected>>.
To unsubscribe, send "unsubscribe" to <phplib-dev-request <email protected>> in
the body, not the subject, of your message.