Home  >  Article  >  Backend Development  >  Things to note when using session for customer authentication_PHP tutorial

Things to note when using session for customer authentication_PHP tutorial

WBOY
WBOYOriginal
2016-07-21 16:02:01896browse

If register_globals = On in your php.ini, all post, get, cookie, and session variables with the same name will be mixed together. You can use $HTTP_*_VARS["username"] to determine which variable you want.

But even if the same name is used, variables_order = "GPCS" in php.ini will be judged according to the priority level. The lower level value cannot override the higher level value. Therefore, if you use session_register("username" from the beginning ) is wise, you can also use session_is_registered to determine whether the variable has been registered.

This is an example:
if (!session_is_registered("username")) {
$user_name= "";
session_register("username");
}
At the same time, ensure that in your php.ini, variables_order = "GPCS" (default) S means that session should be placed last and take priority.

register_globals = On is a waste of system resources and is turned off in the optimized configuration, which also avoids so-called vulnerabilities.


www.bkjia.comtruehttp: //www.bkjia.com/PHPjc/316727.htmlTechArticleIf register_globals = On in your php.ini, all post, get, cookie, session variables with the same name will To mix it all together, you can use $HTTP_*_VARS[username] to determine the variable you want....
Statement:
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn