Presentation is loading. Please wait.

Presentation is loading. Please wait.

Chapter 10 Managing State Information Using Sessions.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "Chapter 10 Managing State Information Using Sessions."— Presentation transcript:

1 Chapter 10 Managing State Information Using Sessions

2 PHP Programming2 Problems with Cookies  Not every client computer is secure Cookies may be accessible to hackers  Many client computers do not accept cookies Spyware gathers user information from a local computer for marketing and advertising purposes without the user’s knowledge

3 PHP Programming3 Using Sessions  A session is a continuous period of access  A session is created for each user that requests a PHP page from a Website  During a session, a PHP script stores state information on a Web server  Only available for current browser session  Allows you to maintain state information even when clients disable cookies  More secure than cookies

4 PHP Programming4 Starting a Session  Use the session_start() function Starts a new session or continues an existing one Generates a unique session ID  A random alphanumeric string like: 7f39d7dd020773f115d753c71290e11f Creates a text file on the Web server  Same name as the session ID, preceded by sess_  Call session_start() before any HTML output

5 PHP Programming5 Starting a Session (continued)  Stored in the Web server directory specified by session.save_path directive in php.ini configuration file  session_start() does not accept any parameters, nor does it return a value <?php session_start();...

6 PHP Programming6 Session ID  If a client’s Web browser is configured to accept cookies, the session ID is assigned to a temporary cookie named PHPSESSID  Pass the session ID as a query string or hidden form field to any Web pages that are called as part of the current session  Use session_id() to retrieve Session ID <?php session_start(); echo “Session ID:”. session_id(); ?>

7 PHP Programming7 Working with Session Variables  Session state information is stored in the $_SESSION autoglobal  When session_start() function is called: PHP initializes a new $_SESSION autoglobal or Retrieves any variables for the current session (based on the session ID) into the $_SESSION autoglobal  Calling session_start() while an existing session is in progress does not create a new session  If session_start() is not called, $_SESSION values will not be available

8 PHP Programming8 Working with Session Variables <?php session_start(); $_SESSION['firstName'] = “Mickey"; $_SESSION['lastName'] = “Mouse"; $_SESSION['occupation'] = “actor"; ?>

9 PHP Programming9 Working with Session Variables  Use the isset() function to ensure that a session variable is set before you attempt to use it <?php session_start(); if (isset($_SESSION['firstName']) && isset($_SESSION['lastName']) && isset($_SESSION['occupation'])) echo $_SESSION['firstName']. " ". $_SESSION['lastName']. " is an ". $_SESSION['occupation']; ?>

10 PHP Programming10 Deleting a Session Variable  Use unset() function against the appropriate entry in $_SESSION[]

11 PHP Programming11 Deleting a Session  To delete a session manually: 1. Execute the session_start() function 2. Use the array() construct to reinitialize the $_SESSION autoglobal 3. Use session_destroy() to delete the session <?php session_start(); $_SESSION = array(); session_destroy(); ?>

12 Fruit Enter your favorite fruit:&nbsp storeFruit2.php showFruit2.php getFruit2.php

13 PHP Programming13 Practice  Modify your login form so that it uses session variables instead of cookies to store the login name and password.

Download ppt "Chapter 10 Managing State Information Using Sessions."

Similar presentations

Cookies, Sessions. Server Side Includes You can insert the content of one file into another file before the server executes it, with the require() function.

Cookies, Sessions. Server Side Includes You can insert the content of one file into another file before the server executes it, with the require() function.
1 Chapter 5 – Handling HTML Controls in Web Pages spring into PHP 5 by Steven Holzner Slides were developed by Jack Davis College of Information Science.

1 Chapter 5 – Handling HTML Controls in Web Pages spring into PHP 5 by Steven Holzner Slides were developed by Jack Davis College of Information Science.
PHP and the Web: Session : 4. Predefined variables PHP provides a large number of predefined global variables to any script which it runs also called.

PHP and the Web: Session : 4. Predefined variables PHP provides a large number of predefined global variables to any script which it runs also called.
©2009 Justin C. Klein Keane PHP Code Auditing Session 7 Sessions and Cookies Justin C. Klein Keane

©2009 Justin C. Klein Keane PHP Code Auditing Session 7 Sessions and Cookies Justin C. Klein Keane
Managing State Information. PHP State Information 2 Objectives Learn about state information Use hidden form fields to save state information Use query.

Managing State Information. PHP State Information 2 Objectives Learn about state information Use hidden form fields to save state information Use query.
Multiple Tiers in Action

Multiple Tiers in Action
Client State Management & Application Security  Client State Management  Concept  ASP Examples  Application Security  Database Based Approach 

Client State Management & Application Security  Client State Management  Concept  ASP Examples  Application Security  Database Based Approach 
Chapter 10 Managing State Information PHP Programming with MySQL.

Chapter 10 Managing State Information PHP Programming with MySQL.
ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.

ASP.NET 2.0 Chapter 6 Securing the ASP.NET Application.
Using Session Control in PHP tMyn1 Using Session Control in PHP HTTP is a stateless protocol, which means that the protocol has no built-in way of maintaining.

Using Session Control in PHP tMyn1 Using Session Control in PHP HTTP is a stateless protocol, which means that the protocol has no built-in way of maintaining.
CSE 154 LECTURE 13: SESSIONS. Expiration / persistent cookies setcookie(name, value, expiration); PHP $expireTime = time() + 60*60*24*7; # 1 week.

CSE 154 LECTURE 13: SESSIONS. Expiration / persistent cookies setcookie("name", "value", expiration); PHP $expireTime = time() + 60*60*24*7; # 1 week.
Php cookies & sessions.

Php cookies & sessions.
Chapter 10 Maintaining State Information Using Cookies.

Chapter 10 Maintaining State Information Using Cookies.
Objectives Learn about state information

Objectives Learn about state information
Web Programming Week 10 Old Dominion University Department of Computer Science CS 418/518 Fall 2010 Martin Klein 11/02/10.

Web Programming Week 10 Old Dominion University Department of Computer Science CS 418/518 Fall 2010 Martin Klein 11/02/10.
Modified from Moseley ’s sli desWeb Applications Development. Lecture 6 Slide 1 Lecture 6: More PHP Instructor: Dr. Mohammad Anwar Hossain.

Modified from Moseley ’s sli desWeb Applications Development. Lecture 6 Slide 1 Lecture 6: More PHP Instructor: Dr. Mohammad Anwar Hossain.
Reading Data in Web Pages tMyn1 Reading Data in Web Pages A very common application of PHP is to have an HTML form gather information from a website's.

Reading Data in Web Pages tMyn1 Reading Data in Web Pages A very common application of PHP is to have an HTML form gather information from a website's.
Open Source Server Side Scripting ECA 236 Open Source Server Side Scripting Cookies & Sessions.

Open Source Server Side Scripting ECA 236 Open Source Server Side Scripting Cookies & Sessions.
CHAPTER 12 COOKIES AND SESSIONS. INTRO HTTP is a stateless technology Each page rendered by a browser is unrelated to other pages – even if they are from.

CHAPTER 12 COOKIES AND SESSIONS. INTRO HTTP is a stateless technology Each page rendered by a browser is unrelated to other pages – even if they are from.
CSC 2720 Building Web Applications Cookies, URL-Rewriting, Hidden Fields and Session Management.

CSC 2720 Building Web Applications Cookies, URL-Rewriting, Hidden Fields and Session Management.

Similar presentations

Ads by Google