Jump to content

[SOLVED] PHP sessions and parsing...


Gnub

Recommended Posts

I've developed two systems, 1 for a login/security, and 1 for database queries.  Both systems run under 1 window.  1 which is on the main page(login/security), and the other in a Iframe(queries). 

 

What im doing now is creating a logging system, where a log is created when a certain query or action is performed on the database(log who did what where and when).  My problem/question is am i going to be able to get the login username from the Security side, and put it into the Iframe system?

 

Im doubtfull i can do this, as both systems run on different domains, however the question needs to be asked. 

 

If i can't, wouldn't it be possible, upon login to parse the info from login system to the query system and store it into a session variable, and then call that session when i need it?  But wouldn't this be a risk for security, and open for abuse?

 

thanks for any opinions

 

Gnub

Link to comment
https://forums.phpfreaks.com/topic/47865-solved-php-sessions-and-parsing/
Share on other sites

when you do the login... if you save it into the $_SESSION[user]=$row; your createing an arrayed array, which is "hard" to abuse through conventional methods...

if you want... after you do the login... unset() the data which needs to be secured... email, password, ip address, phpsessid, etc... so it doesnt exist in that array...

 

but quite honestly... if you log into your account, you get your information... which is accessable to you regardless, and if you have hackers, who cares if they hack into their own account? lol... i'm pretty sure, if they can login, they know their own information already... and if they cannot log into an account, the $_SESSION[user] wont have any information...

 

either way... their not going to have any access to any information they wouldnt have anyways...

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.