ID: 16810 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] -Status: Feedback +Status: Open Bug Type: Session related Operating System: Linux RedHat PHP Version: 4.0CVS-2002-04-2 New Comment:
A simple example script: <?php session_start(); echo<<<EOF <form method="get"> See hidden input<input type="submit" name="submit" value="Test" /> </form> <a href="$PHP_SELF?foo=bar">See new href</a> EOF; ?> The url_rewriter.tags value: a=href,area=href,frame=src,form=fakeentry Previous Comments: ------------------------------------------------------------------------ [2002-04-24 20:21:51] [EMAIL PROTECTED] Please add short script which can be used to reproduce this and also your url_rewriter.tags line from your php.ini ------------------------------------------------------------------------ [2002-04-24 19:42:58] [EMAIL PROTECTED] Except location of, <INPUT TYPE="hidden" NAME="SID" VALUE="[someSID] /> We can fix other issues. ------------------------------------------------------------------------ [2002-04-24 19:23:15] [EMAIL PROTECTED] I thought this is a suspended issue. But I cannot find report.. ------------------------------------------------------------------------ [2002-04-24 18:55:36] [EMAIL PROTECTED] When the session library rewrites the tags specified by "url_rewriter.tags" to append "&SID=[someSID]" and/or to add a <INPUT TYPE="hidden" NAME="SID" VALUE="[someSID]", the resulting HTML no longer complies with either the HTML 4.01 <http://www.w3.org/TR/html4/> or XHTML 1.0 <http://www.w3.org/TR/xhtml1/> standards. In order to comply, the following would be needed: * lowercase tag/attribute names * ampersand entity ("&" in place of "&") * "ID" attribute in addition to "NAME" attribute * close the empty input tag, either with "<input... />" or "</input>" ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=16810&edit=1
