thomas
|
| Posted: 03/05/2003, 9:38 PM |
|
hi,
iam very confused. can anyone help me explaining the session handling on php with ccs2. i knew that the apache server creates in session_id if you connect to a page, this sessionid is stored on the server and you can put variables in that file. fine! to rememer that session_id to the that user there are two ways, store the session_id also in a cookie on the local pc or to make URL http-post. with php 4.2.x and higher its also possible to work with trans-sid so that the second way is done automatic. fine!
every changes you can make in the /usr/local/etc/php.ini file, section sessions. fine!
there are two problems i have:
1. if i use the login form with ccs2, i think i register automatic my for example username, but after a while (2-3 hours) of inactivation, the session_id will lost, i setup the cache_expire of 1440 minutes in php.ini, but it doesnt work
2. on the bookstore shop examples i turned off acception cookies in my internet explorer6, and i cant login into shop. only with accept cookies it will work.
iam very happy if anyone can help me, you can also write an email to me at:thomas.may@x9media.com
|
|
|
 |
RonB
|
| Posted: 03/06/2003, 4:45 AM |
|
1.What's the problem. I use this mechanism as extra protection and have it set to 15 minutes. Protected pages are just that. Protected. They aren't meant to be left open for an extended amount of time without activity because this could mean the PC is left unattended and thus vulnarable to unauthorised acces.
2. I think the bookstore example uses coockies for the shoppingcart. If you do not allow cookies to be set it won't work.
Maybe you can be a bit more specific to what the problem is in your experience.
Ron
|
|
|
|
|
