Question regarding sessions

[holowugz]

Ok i have a few questions.

First of all i have two applications that run on my web server, and just as an experiment i logged into one of them, and then tried to acces a page on the other.
Now that is because the login system is practically identical and requires the same user permissions.

So techncially that is fine, but i want to make sure they log into each system first.

Now i was thinking if i created a table for each one called session.
and i stored teh session ID, User ID, Time, and IP.

and on each page as a secuirity check i just make sure that the current session ID exists in the database.

the information is entered upon login and deleted upon logout.

would that work?

[Darkness Soul]

isn't simple you set different session names for each app? so, each app will use differente files to record sessions..

Never tested your idea, so, don't know.. ^^"

D.Soul

[holowugz]

[!--quoteo(post=366902:date=Apr 20 2006, 06:19 PM:name=Darkness Soul)--][div class=\'quotetop\']QUOTE(Darkness Soul @ Apr 20 2006, 06:19 PM) [snapback]366902[/snapback][/div][div class=\'quotemain\'][!--quotec--]
isn't simple you set different session names for each app? so, each app will use differente files to record sessions..

Never tested your idea, so, don't know.. ^^"

D.Soul
[/quote]

when you say session names, i assume you mean the variable names.

[Darkness Soul]

I mean the function [b]string session_name ( [string name] )[/b]..

when you start your [i]session[/i], use [b]session_name( "app name" ) ;[/b] to secure the unique file.. ^~

Sorry for my mess english x)

D.Soul