Presentation is loading. Please wait.

Presentation is loading. Please wait.

CookiesPHPMay-2007 : [‹#›] Maintaining State in PHP Part I - Cookies.

Published byBrielle Coolidge Modified over 9 years ago

Similar presentations

Presentation on theme: "CookiesPHPMay-2007 : [‹#›] Maintaining State in PHP Part I - Cookies."— Presentation transcript:

1 CookiesPHPMay-2007 : [‹#›] Maintaining State in PHP Part I - Cookies

2 CookiesPHPMay-2007 : [‹#›] xHTML - a ‘stateless’ environment stateless (adj.) Having no information about what occurred previously. Most modern applications maintain state, which means that they remember what you were doing last time you ran the application, and they remember all your configuration settings. This is extremely useful because it means you can mould the application to your working habits. Each request for a new web page is processed without any knowledge of previous pages requested or processed.

3 CookiesPHPMay-2007 : [‹#›] How do they do that? For example: A user ‘logs in’ to a web page. Once logged in, the user can browse the site while maintaining their logged in state.

4 CookiesPHPMay-2007 : [‹#›] Is PHP stateless? Variables are destroyed as soon as the page script finishes executing. The script can access the ‘referrer’, the address of the previous page, although this can’t really be trusted. $_SERVER['HTTP_REFERER'] It is possible to add data to a database/text file to add persistent data, although this is not connected with a particular user…

5 CookiesPHPMay-2007 : [‹#›] Is PHP Stateless… No! The usual way to maintain state in PHP pages is via the use of Sessions. To understand how these work, we need to have a look at what and how cookies are..

6 CookiesPHPMay-2007 : [‹#›] What is a Cookie? A cookie is a small text file that is stored on a user’s computer. Each cookie on the user’s computer is connected to a particular domain. Each cookie be used to store up to 4kB of data. A maximum of 20 cookies can be stored on a user’s PC per domain.

7 CookiesPHPMay-2007 : [‹#›] Example (1) 1. User sends a request for page at www.example.com for the first time. www.example.com page request

8 CookiesPHPMay-2007 : [‹#›] Example (2) 2. Server sends back the page xhtml to the browser AND stores some data in a cookie on the user’s PC. cookie data xhtml

9 CookiesPHPMay-2007 : [‹#›] Example (1) 3. At the next page request for domain www.example.com, all cookie data associated with this domain is sent too. www.example.com page request cookie data

10 CookiesPHPMay-2007 : [‹#›] Set a cookie setcookie(name [,value [,expire [,path [,domain [,secure]]]]]) name = cookie name value = data to store (string) expire = UNIX timestamp when the cookie expires. Default is that cookie expires when browser is closed. path = Path on the server within and below which the cookie is available on. domain = Domain at which the cookie is available for. secure = If cookie should be sent over HTTPS connection only. Default false.

11 CookiesPHPMay-2007 : [‹#›] Set a cookie - examples setcookie(‘name’,’Robert’) This command will set the cookie called name on the user’s PC containing the data Robert. It will be available to all pages in the same directory or subdirectory of the page that set it (the default path and domain ). It will expire and be deleted when the browser is closed (default expire ).

12 CookiesPHPMay-2007 : [‹#›] Set a cookie - examples setcookie(‘age’,’20’,time()+60*6 0*24*30) This command will set the cookie called age on the user’s PC containing the data 20. It will be available to all pages in the same directory or subdirectory of the page that set it (the default path and domain ). It will expire and be deleted after 30 days.

13 CookiesPHPMay-2007 : [‹#›] Set a cookie - examples setcookie(‘gender’,’male’,0,’/’) This command will set the cookie called gender on the user’s PC containing the data male. It will be available within the entire domain that set it. It will expire and be deleted when the browser is closed.

14 CookiesPHPMay-2007 : [‹#›] Read cookie data All cookie data is available through the superglobal $_COOKIE : $variable = $_COOKIE[‘cookie_name’] or $variable = $HTTP_COOKIE_VARS[‘cookie_name’]; e.g. $age = $_COOKIE[‘age’]

15 CookiesPHPMay-2007 : [‹#›] Storing an array.. Only strings can be stored in Cookie files. To store an array in a cookie, convert it to a string by using the serialize() PHP function. The array can be reconstructed using the unserialize() function once it had been read back in. Remember cookie size is limited!

16 CookiesPHPMay-2007 : [‹#›] Delete a cookie To remove a cookie, simply overwrite the cookie with a new one with an expiry time in the past… setcookie(‘cookie_name’,’’,time()-6000) Note that theoretically any number taken away from the time() function should do, but due to variations in local computer times, it is advisable to use a day or two.

17 CookiesPHPMay-2007 : [‹#›] To be first.. HEADER REQUESTS As the setcookie command involves sending a HTTP header request, it must be executed before any xhtml is echoed to the browser, including whitespace. correct! incorrect. echoed whitespace before setcookie

18 CookiesPHPMay-2007 : [‹#›] Malicious Cookie Usage There is a bit of a stigma attached to cookies – and they can be maliciously used (e.g. set via 3 rd party banner ads). The important thing to note is that some people browse with them turned off. e.g. in FF, Tools > Options > Privacy

19 CookiesPHPMay-2007 : [‹#›] The USER is in control Cookies are stored client-side, so never trust them completely: They can be easily viewed, modified or created by a 3 rd party. They can be turned on and off at will by the user.

20 CookiesPHPMay-2007 : [‹#›] HOE 13 Using Cookies

Download ppt "CookiesPHPMay-2007 : [‹#›] Maintaining State in PHP Part I - Cookies."

Similar presentations

Powerpoint Templates Page 1 Powerpoint Templates Server Side Scripting PHP.

Powerpoint Templates Page 1 Powerpoint Templates Server Side Scripting PHP.
UFCE8V-20-3 Information Systems Development 3 (SHAPE HK)

UFCE8V-20-3 Information Systems Development 3 (SHAPE HK)
Cookies, Sessions. Server Side Includes You can insert the content of one file into another file before the server executes it, with the require() function.

Cookies, Sessions. Server Side Includes You can insert the content of one file into another file before the server executes it, with the require() function.
Cookie in a servlet. Cookies are small bits of textual information that a Web server sends to a browser and that the browser returns unchanged when visiting.

Cookie in a servlet. Cookies are small bits of textual information that a Web server sends to a browser and that the browser returns unchanged when visiting.
©2009 Justin C. Klein Keane PHP Code Auditing Session 7 Sessions and Cookies Justin C. Klein Keane

©2009 Justin C. Klein Keane PHP Code Auditing Session 7 Sessions and Cookies Justin C. Klein Keane
Chapter 10 Managing State Information PHP Programming with MySQL.

Chapter 10 Managing State Information PHP Programming with MySQL.
Using Session Control in PHP tMyn1 Using Session Control in PHP HTTP is a stateless protocol, which means that the protocol has no built-in way of maintaining.

Using Session Control in PHP tMyn1 Using Session Control in PHP HTTP is a stateless protocol, which means that the protocol has no built-in way of maintaining.
CSE 154 LECTURE 13: SESSIONS. Expiration / persistent cookies setcookie(name, value, expiration); PHP $expireTime = time() + 60*60*24*7; # 1 week.

CSE 154 LECTURE 13: SESSIONS. Expiration / persistent cookies setcookie("name", "value", expiration); PHP $expireTime = time() + 60*60*24*7; # 1 week.
Chapter 10 Maintaining State Information Using Cookies.

Chapter 10 Maintaining State Information Using Cookies.
Open Source Server Side Scripting ECA 236 Open Source Server Side Scripting Cookies & Sessions.

Open Source Server Side Scripting ECA 236 Open Source Server Side Scripting Cookies & Sessions.
Cookies Set a cookie – setcookie() Extract data from a cookie - $_COOKIE Augment user authentication script with a cookie.

Cookies Set a cookie – setcookie() Extract data from a cookie - $_COOKIE Augment user authentication script with a cookie.
CHAPTER 12 COOKIES AND SESSIONS. INTRO HTTP is a stateless technology Each page rendered by a browser is unrelated to other pages – even if they are from.

CHAPTER 12 COOKIES AND SESSIONS. INTRO HTTP is a stateless technology Each page rendered by a browser is unrelated to other pages – even if they are from.
CSC 2720 Building Web Applications Cookies, URL-Rewriting, Hidden Fields and Session Management.

CSC 2720 Building Web Applications Cookies, URL-Rewriting, Hidden Fields and Session Management.
JavaScript, Fourth Edition

JavaScript, Fourth Edition
Advanced Web Forms with Databases Programming Right from the Start with Visual Basic.NET 1/e 13.

Advanced Web Forms with Databases Programming Right from the Start with Visual Basic.NET 1/e 13.
Week 9 PHP Cookies and Session Introduction to JavaScript.

Week 9 PHP Cookies and Session Introduction to JavaScript.
CSE 154 LECTURE 12: COOKIES. Including files: include include(filename); PHP include(header.html); include(shared-code.php); PHP inserts the entire.

CSE 154 LECTURE 12: COOKIES. Including files: include include("filename"); PHP include("header.html"); include("shared-code.php"); PHP inserts the entire.
269200 Web Programming Language Week 7 Dr. Ken Cosh Security, Sessions & Cookies.

Web Programming Language Week 7 Dr. Ken Cosh Security, Sessions & Cookies.
Creating Databases for Web Applications cookie examples lab time: favorites cookies & Sessions class time for group work/questions on projects Next class:

Creating Databases for Web Applications cookie examples lab time: favorites cookies & Sessions class time for group work/questions on projects Next class:
Chapter 8 Cookies And Security JavaScript, Third Edition.

Chapter 8 Cookies And Security JavaScript, Third Edition.

Similar presentations

Ads by Google