PHPBuilder.com, the best resource for PHP tutorials, templates, PHP manuals, content management systems, scripts, classes and more.

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices
Hiermenus
DatabaseJournal
Technology Jobs

IT
Developer
Internet News
Small Business
Personal Technology
International

Search internet.com
Advertise
Corporate Info
Newsletters
Tech Jobs
E-mail Offers

Covalent Extends Apache 2.0 to Microsoft ASP.NET
ShopWorX - Support for Windows
PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1
Network Risk Assessment
Full-Featured, Java-Based Apache GUI

Partners & Affiliates

Smarty Templating System
Advanced Image Editing Under the GD Library
Validating PHP User Sessions
PHP Form Validation System: An Object-Oriented Approach
Switchbox

Re: [phplib] using POST in fall back mode From: NickM (nick <email protected>)
Date: 07/12/00

Next message: Bryan McGuire: "Re: [phplib] using POST in fall back mode"
Previous message: David West: "[phplib] using POST in fall back mode"
In reply to: David West: "[phplib] using POST in fall back mode"
Next in thread: Bryan McGuire: "Re: [phplib] using POST in fall back mode"
Reply: Bryan McGuire: "Re: [phplib] using POST in fall back mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Did you make sure that EVERY url you print is encapsulated within
$sess->url($url) otherwise the session id won't be passed on.

So basically every url must be dealt with in the code and put through this,
none in the html, at least whereever you need to keep auth that is.

Nick

----- Original Message -----
From: "David West" <westd <email protected>>
To: <phplib <email protected>>
Sent: Wednesday, July 12, 2000 4:11 PM
Subject: [phplib] using POST in fall back mode

> Hi,
>
> I'm using PHPLIB for basic session handling. My problem is thus:
>
> I have set the mode to cookie, and fallback mode to GET. What my page
does
> is submit a form using the POST method with a user's username and
password.
> This then accesses a MySQL database which picks out some information about
> the user. I then use $sess->register() to remember this info. This works
> fine with cookies turned on, and with GET set as the $mode.
>
> However, when I use GET as the fallback mode to cookies, and disable
cookies
> in my browser, a problem arises. When the 302 and location headers are
sent
> by PHPLIB with the session id as a URL parameter, the original posted
> username and password do not appear to be resent, and so I can't get the
> information about the user.
>
> Obviously if I change the original form to use GET instead of POST, it'll
> work, but I don't want the users password visible in the URL.
>
> Any help with this would be greatly appreciated.
> David West
>
> PS. I'm using PHPLIB as a bunch of includes, and I can't change php.ini,
> etc. I dunno if this is relevant?
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: phplib-unsubscribe <email protected>
> For additional commands, e-mail: phplib-help <email protected>
>

---------------------------------------------------------------------
To unsubscribe, e-mail: phplib-unsubscribe <email protected>
For additional commands, e-mail: phplib-help <email protected>

Next message: Bryan McGuire: "Re: [phplib] using POST in fall back mode"
Previous message: David West: "[phplib] using POST in fall back mode"
In reply to: David West: "[phplib] using POST in fall back mode"
Next in thread: Bryan McGuire: "Re: [phplib] using POST in fall back mode"
Reply: Bryan McGuire: "Re: [phplib] using POST in fall back mode"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]