Jump to content

Help needed with PHP session management class


Fergal Andrews

Recommended Posts

Hi,

I am writing a session management class for a project I am working on at the moment. The live server has a very restrictive environment, PHP4, Oracle 9i, no cache available, no writing to files on the server and no usage of PHP sessions.

 

Consequently, I am writing a class to manage sessions as the project involves a big online form over several pages. I've written the class which uses a cookie to store an ID and writes 'session' data to the database.

 

However, I need to handle users that have disabled cookies. I was thinking the best solution would be to write the id to a hidden form field, but there might be some security concerns about that. Does anyone have a better solution for this problem?

 

Many thanks,

Fergal

Hi thorpe,

thanks for the reply.

The job is for a bank who are paranoid about security, which I guess is understandable. They are also worried about the fact that there will be a lot of use. PHP's session handling can have problems when subjected to heavy traffic.

Cheers,

Fergal

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.