search

Home  >  Article  >  Backend Development  >  Solution to sharing session across http and https cross-domain

Solution to sharing session across http and https cross-domain

WBOY
WBOYOriginal
2016-07-25 08:57:271101browse
  2. $currentSessionID = session_id();
  3. session_id($currentSessionID );
Copy code

The following is the implementation code, which is divided into http and https parts.

1, http part:

  2. session_start();
  3. $currentSessionID = session_id();
  4. $_SESSION['testvariable'] = 'Session worked';
  5. $secureServerDomain = 'www.sjolzy.cn';
  6. $securePagePath = '/safePages/securePage.php'
  7. echo 'Click here to jump To HTTPS protocol';
  8. ?>
Copy code

2, HTTPS part

  2. $currentSessionID = $_GET['session'];
  3. session_id($currentSessionID);
  4. session_start();
  5. if (!emptyempty($_SESSION['testvariable'])) {
  6. echo $_SESSION['testvariable'];
  7. } else {
  8. echo 'Session did not work.';
  9. }
  10. ?>
Copy code

Instructions: There is a bit of a security issue. The transmission of the session id is not encrypted and can be detected by sniffing, obtaining the session id and then obtaining the session data. It is recommended to encrypt this ID.



Statement:
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Previous article:PHP function to obtain search engine inbound keywordsNext article:PHP function to obtain search engine inbound keywords

Related articles

See more