when cookies is not enable in browser then how to store session in php
Question
Today, I had a PHP interview. The interviewer asked to me:
It is possible to store session value if cookies in browser is not enable?
I answered "No". Because when we set session, sessionid is store in cookie in user's browser.
I am confuse, it is right answer or not?
Because, interviewer said, there is no another way of storing session when cookie is disable. Please provide me a way with example , if is it possible.
Thanks for valuable comments.
2 answers
solution1
2 2015-07-15 18:52:23
Pass the session ID around in the URL. So links on the page you generate all go to .../page.php?sess=<id>&foo=bar
solution2
1 2015-07-15 18:46:06
There are several ways to imitate a cookie, if cookies are turned off.
You can 'fingerprint' the client by collecting as much knowledge as possible (IP, UserAgent etc. etc.) make a hash, and use that to save/retrieve your session ... not foolproof and prone to collisions ... but better than nothing.
This technique can be made more robust by adding information gathered by JavaScript ... which in turn makes your loading-procedure rather twisted. But it is possible.
You can also use local-storage at client and then synchronise win ajax.
None of this is easy ... but possible.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.