Rp.: Re: Rp.: Re: [Phplib-users] Sessions where are we going??
Brought to you by:
nhruby,
richardarcher
Menu
▾
▴
Rp.: Re: Rp.: Re: [Phplib-users] Sessions where are we going??
|
From: Giancarlo <gia...@na...> - 2002-07-02 15:49:33
|
Donncha O Caoimh <don...@tr...> a écrit le 2/7/02 9:59: >I explained my idea to John >here at work and he said >much the same thing. In >that case we put a timer in >there and update the key >every X >seconds/minutes/hours or >something. It is already damn difficult to have people accept the idea of using a new session after auth, only once... And BTW, did you discover a way to have PHP4 issue a new id when one already exists? This is the basis for both the new changes I'd port to session4: block_alien_sid creation and clone sess on authenticated (and I'd add a config to have a cookie_or_noway mode 'only' after authentication) As maybe you know, I don't have 'write access' to cvs anymore, I am declaratedly lobbying. Gian |
