ID: 14636 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] -Status: Assigned +Status: Feedback Bug Type: Session related Operating System: windows 2000 professional PHP Version: 4.0.6 Assigned To: yohgaki New Comment:
I'm not sure what is going on, since I didn't have time to take a look. To report: Is chris' comment enough? Previous Comments: ------------------------------------------------------------------------ [2002-02-03 22:32:07] [EMAIL PROTECTED] This is actually not a bug at all but rather behavior of HTTP. For PHP to be able to "find" a previously set session variable, it must be able to identify the client, right? Well, the default method used to accomplish this is via a cookie set when you initiate the session. Since it appears you are redirecting the user to the member's only page using the Location header on the same page the session is initiated, the PHPSESSID cookie will not be set. Thus, once the user arrives at the member's only page, PHP won't be able to identify the user. Their session variable is still there, but PHP won't give it to a stranger. :) Basically, in your HTTP reponse that includes the Set-Cookie header, it needs to be a regular 200 OK response and not a protocol level redirection. If you absolutely have to have the behavior you're going for here, you're going to have to use a meta refresh for the redirection. Yes, it's not as cool, but it's the only way to set a cookie and redirect the client in the same response. Otherwise, you'll have to pass the value of the cookie on the URL, which might be a good option for you actually. Hope that helps. ------------------------------------------------------------------------ [2001-12-21 20:35:17] [EMAIL PROTECTED] Let me check this thing ;) ------------------------------------------------------------------------ [2001-12-21 12:19:47] [EMAIL PROTECTED] The problem as I understand it is in the use of session.auto_start in the php.ini and session_start() in the script. session.auto_start has to be set to 0 (zero) if using session_start() in the script. The code seems to work with this setting. Somehow I did not see this in any of the documentation or other bug reports. Thanks for the assistance. Kannan ------------------------------------------------------------------------ [2001-12-21 08:52:59] [EMAIL PROTECTED] Dupe of 6121 ------------------------------------------------------------------------ [2001-12-21 08:36:04] [EMAIL PROTECTED] I have reviewed the Bugs database against the following IDs 13732 - is closed with no reply or resolution indicated. 12704 - marked Bogus 12679 - does not solve my situation (session.cookie_domain). I am not using one. It is left blank. 8912 - similar. But in my case browser refresh on the target page also does not solve the problem. The only thin that works is clicking on a href link to go to the target page. I am using Apache Webserver 1.3.22 for Windows. Kannan ------------------------------------------------------------------------ The remainder of the comments for this report are too long. To view the rest of the comments, please view the bug report online at http://bugs.php.net/14636 -- Edit this bug report at http://bugs.php.net/?id=14636&edit=1 -- PHP Development Mailing List <http://www.php.net/> To unsubscribe, visit: http://www.php.net/unsub.php