When browsing the internet I find a lot of websites using php that includes the session ID (SID) in the URL. Which is better, actually? Is it really good to include the SID in the URL, or just use the cookies?
Printable View
When browsing the internet I find a lot of websites using php that includes the session ID (SID) in the URL. Which is better, actually? Is it really good to include the SID in the URL, or just use the cookies?
Not sure whats better, but in the url is a sure thing.
Some users turn off cookies.
_
This can be good and bad. Good because some users turn cookies off so it allows session information to be used, but it also means that someone can copy the users url, with session id, and view what they were doing on the site. I had some links about the pro's and conn's will try and dig them out for you.
Heres part of what i was talking about, the linl to the pdf give lots of good info as well.
Quote:
Originally Posted by http://uk2.php.net/manual/en/ref.session.php
thank you very much john.. really appreciate it