Using Cookies to Transfer Session IDs in PHP


How To Force the PHP Engine to Use Cookies to Transfer Session IDs in PHP?



If you want to force your PHP engine to use cookies to transfer session IDs instead of URL parameters, you can open the PHP configuration file, php.ini, and make the following changes:

session.use_cookies = 1
session.use_only_cookies = 1

Now re-run the first_page.php and next_page.php scripts presented in the previous tutorials. You will get something like:

Query string of the incoming URL: 
Cookies received:
  PHPSESSID = r66hq1bcg8o79e5i5gd52p26g3
Value of MyLogin has been retrieved: FYICenter
Value of MyColor has been retrieved: Blue

Base on the output, your PHP engine is using cookies to transfer session IDs now, because you can see the cookie named as PHPSESSID contains the session ID, there is no URL parameters related to session ID.


Security of Storing Session ID as a Cookie in PHP

How Sessoion IDs Are Transferred in PHP

Understanding and Using Sessions in PHP

⇑⇑ PHP Tutorials

2016-10-25, 1599🔥, 0💬