SlideShare une entreprise Scribd logo

Web app development_cookies_sessions_14

Hassen Poreya
Hassen Poreya
Technologie
1  sur  24
Télécharger pour lire hors ligne
hasen@microcis.net July 24, 2013Hassen poreya Trainer, Cresco Solution Afghanistan Workforce Development Program Maintaining State in PHP Cookies, Sessions
HTML – a Stateless Environment  Stateless  Having no information about what occurred previously.  HTTP – Stateless  FTP – State full  Most modern applications maintain state, which means that they remember what you were doing last time you ran the application, and they remember all your configuration settings.  This is extremely useful because it means you can mould the application to your working habits.
HTML – a Stateless Environment  Each request for a new web page is processed without any knowledge of previous pages requested or processed.  So how they do browse multiple pages?!  A user ‘logs in’ to a web page. Once logged in, the user can browse the site while maintaining their logged in state.
Is PHP Stateless?  Variables are destroyed as soon as the page script finishes executing.  The script can access the ‘referrer’, the address of the previous page, although this can’t really be trusted. $_SERVER['HTTP_REFERER']  It is possible to add data to a database / text file to add persistent data, although this is not connected with a particular user…
Is PHP Stateless?  The answer is NO!  The usual way to maintain state in PHP pages is via the use of Sessions.  To understand how these work, we need to have a look at what and how cookies are.
What is a Cookie?  A cookie is a small text file that is stored on a user’s computer.  Each cookie on the user’s computer is connected to a particular domain.  Each cookie is being used to store up to 4kB of data.  A maximum of 20 cookies can be stored on a user’s PC per domain.
Example  User sends a request for page at www.example.com for the first time!
Example  Server sends back the page xhtml to the browser AND stores some data in a cookie on the user’s PC.
Example  At the next page request for domain www.example.com, all cookie data associated with this domain is sent too.
Set Cookie setcookie(name,value,expire,path, domain,secure)  name= cookie name  value= data to store (string)  expire= UNIX timestamp when the cookie expires. Default is that cookie expires when browser is closed.  path= Path on the server within and below which the cookie is available on.  domain= Domain at which the cookie is available for.  secure= If cookie should be sent over HTTPS connection only. Default false.
Set Cookie setcookie(‘name’,’Robert’)  This command will set the cookie called name on the user’s PC containing the data Robert.  It will be available to all pages in the same directory or subdirectory of the page that set it (the default path and domain).  It will expire and be deleted when the browser is closed (default expire).
Set Cookie setcookie(‘age’,’20’,time()+60*60*24 *30)  This command will set the cookie called age on the user’s PC containing the data 20.  It will be available to all pages in the same directory or subdirectory of the page that set it (the default path and domain).  It will expire and be deleted after 30 days.
Set Cookie setcookie(‘gender’,’male’,0,’/’)  This command will set the cookie called gender on the user’s PC containing the data male.  It will be available within the entire domain that set it.  It will expire and be deleted when the browser is closed.
Reading Cookies  All cookie data is available through the super global $_COOKIE:  $variable = $_COOKIE[‘cookie_name’]  or  $variable = $HTTP_COOKIE_VARS[‘cookie_name’];  e.g.  $age = $_COOKIE[‘age’]
Deleting Cookies  To remove a cookie, simply overwrite the cookie with a new one with an expiry time in the past… setcookie(‘cookie_name’,’’,time()-6000)  Note that theoretically any number taken away from the time()function should do, but due to variations in local computer times, it is advisable to use a day or two.
Header Request – Must be first  As the setcookie command involves sending a HTTP header request, it must be executed before any xhtml is echoed to the browser, including whitespace. Correct Incorrect Empty or HMTL code
Malicious Usage of Cookies  There is a bit of a stigma attached to cookies –and they can be maliciously used (e.g. set via 3rdparty banner ads).  The important thing to note is that some people browse with them turned off.
Cookies VS Sessions  Limited storage space  Insecure storage client- side  User controlled  Practically unlimited space  Reasonably securely stored server-side  No user control Cookies Sessions
Starting a Session session_start();  Starting session always comes at the first line of your php code.  DO NOT start a session after any print or echo statement!
Storing Session Data  The $_SESSION super global array can be used to store any session data.  e.g. $_SESSION[‘name’] = $name; $_SESSION[‘age’] = $age;
Reading Session Data  Data is simply read back from the $_SESSION super global array.  e.g. $name = $_SESSION[‘name’]; $age = $_SESSION[‘age’];
Destroying/removing Session Unset(); Unset_session(); session_destroy();
Let’s do the practice
hasen@microcis.net July 24, 2013Hassen poreya Trainer, Cresco Solution Any Questions! Afghanistan Workforce Development Program

Recommandé

Cookies and sessions
Cookies and sessionsCookies and sessions
Cookies and sessions
UdaAs PaNchi
 
Introduction to php web programming - sessions and cookies
Introduction to php web programming - sessions and cookiesIntroduction to php web programming - sessions and cookies
Introduction to php web programming - sessions and cookies
baabtra.com - No. 1 supplier of quality freshers
 
Lecture8 php page control by okello erick
Lecture8 php page control by okello erickLecture8 php page control by okello erick
Lecture8 php page control by okello erick
okelloerick
 
PHP Cookies and Sessions
PHP Cookies and SessionsPHP Cookies and Sessions
PHP Cookies and Sessions
Nisa Soomro
 
Php ssession - cookies -introduction
Php ssession - cookies -introductionPhp ssession - cookies -introduction
Php ssession - cookies -introduction
Programmer Blog
 
Sessions and cookies
Sessions and cookiesSessions and cookies
Sessions and cookies
www.netgains.org
 
Sessions in php
Sessions in php Sessions in php
Sessions in php
Mudasir Syed
 
PHP - Introduction to PHP Cookies and Sessions
PHP - Introduction to PHP Cookies and SessionsPHP - Introduction to PHP Cookies and Sessions
PHP - Introduction to PHP Cookies and Sessions
Vibrant Technologies & Computers
 

Recommandé

Cookies and sessions
Cookies and sessionsCookies and sessions
Cookies and sessions
UdaAs PaNchi
 
Introduction to php web programming - sessions and cookies
Introduction to php web programming - sessions and cookiesIntroduction to php web programming - sessions and cookies
Introduction to php web programming - sessions and cookies
baabtra.com - No. 1 supplier of quality freshers
 
Lecture8 php page control by okello erick
Lecture8 php page control by okello erickLecture8 php page control by okello erick
Lecture8 php page control by okello erick
okelloerick
 
PHP Cookies and Sessions
PHP Cookies and SessionsPHP Cookies and Sessions
PHP Cookies and Sessions
Nisa Soomro
 
Php ssession - cookies -introduction
Php ssession - cookies -introductionPhp ssession - cookies -introduction
Php ssession - cookies -introduction
Programmer Blog
 
Sessions and cookies
Sessions and cookiesSessions and cookies
Sessions and cookies
www.netgains.org
 
Sessions in php
Sessions in php Sessions in php
Sessions in php
Mudasir Syed
 
PHP - Introduction to PHP Cookies and Sessions
PHP - Introduction to PHP Cookies and SessionsPHP - Introduction to PHP Cookies and Sessions
PHP - Introduction to PHP Cookies and Sessions
Vibrant Technologies & Computers
 
Php session
Php sessionPhp session
Php session
argusacademy
 
Cookie and session
Cookie and sessionCookie and session
Cookie and session
Aashish Ghale
 
Session Management & Cookies In Php
Session Management & Cookies In PhpSession Management & Cookies In Php
Session Management & Cookies In Php
Harit Kothari
 
Cookies and sessions
Cookies and sessionsCookies and sessions
Cookies and sessions
Sukrit Gupta
 
Cookies and sessions
Cookies and sessionsCookies and sessions
Cookies and sessions
Lena Petsenchuk
 
Php Sessoins N Cookies
Php Sessoins N CookiesPhp Sessoins N Cookies
Php Sessoins N Cookies
mussawir20
 
Online presence for designers 2
Online presence for designers 2Online presence for designers 2
Online presence for designers 2
Alexandra Deschamps-Sonsino
 
PHP - Getting good with cookies
PHP - Getting good with cookiesPHP - Getting good with cookies
PHP - Getting good with cookies
Firdaus Adib
 
PHP
PHP PHP
PHP
webhostingguy
 
My_sql_with_php
My_sql_with_phpMy_sql_with_php
My_sql_with_php
Ishaq Shinwari
 
Php sessions & cookies
Php sessions & cookiesPhp sessions & cookies
Php sessions & cookies
baabtra.com - No. 1 supplier of quality freshers
 
Session and Cookies
Session and CookiesSession and Cookies
Session and Cookies
Kamal Acharya
 
PHP Cookies, Sessions and Authentication
PHP Cookies, Sessions and AuthenticationPHP Cookies, Sessions and Authentication
PHP Cookies, Sessions and Authentication
Gerard Sychay
 
Session & Cookies
Session & CookiesSession & Cookies
Session & Cookies
university of education,Lahore
 
Who is Afraid of Cookies?
Who is Afraid of Cookies?Who is Afraid of Cookies?
Who is Afraid of Cookies?
Asaf Gery
 
Php cookies
Php cookiesPhp cookies
Php cookies
JIGAR MAKHIJA
 
Php sessions
Php sessionsPhp sessions
Php sessions
JIGAR MAKHIJA
 
Remove php calls and scale your site like crazy !
Remove php calls and scale your site like crazy !Remove php calls and scale your site like crazy !
Remove php calls and scale your site like crazy !
Wim Godden
 
Cookies
CookiesCookies
Cookies
amuthadeepa
 
Web Cookies
Web CookiesWeb Cookies
Web Cookies
apwebco
 
Enterprises resource planning
Enterprises resource planningEnterprises resource planning
Enterprises resource planning
Cyber Security Infotech Pvt. Ltd.
 
Web app development_html_css_03
Web app development_html_css_03Web app development_html_css_03
Web app development_html_css_03
Hassen Poreya
 

Contenu connexe

Tendances

Session Management & Cookies In Php
Session Management & Cookies In PhpSession Management & Cookies In Php
Session Management & Cookies In Php
Harit Kothari
 
Cookies and sessions
Cookies and sessionsCookies and sessions
Cookies and sessions
Sukrit Gupta
 
Php Sessoins N Cookies
Php Sessoins N CookiesPhp Sessoins N Cookies
Php Sessoins N Cookies
mussawir20
 
Web Cookies
Web CookiesWeb Cookies
Web Cookies
apwebco
 

Tendances (20)

Php session
Php sessionPhp session
Php session
 
Cookie and session
Cookie and sessionCookie and session
Cookie and session
 
Session Management & Cookies In Php
Session Management & Cookies In PhpSession Management & Cookies In Php
Session Management & Cookies In Php
 
Cookies and sessions
Cookies and sessionsCookies and sessions
Cookies and sessions
 
Cookies and sessions
Cookies and sessionsCookies and sessions
Cookies and sessions
 
Php Sessoins N Cookies
Php Sessoins N CookiesPhp Sessoins N Cookies
Php Sessoins N Cookies
 
Online presence for designers 2
Online presence for designers 2Online presence for designers 2
Online presence for designers 2
 
PHP - Getting good with cookies
PHP - Getting good with cookiesPHP - Getting good with cookies
PHP - Getting good with cookies
 
PHP
PHP PHP
PHP
 
My_sql_with_php
My_sql_with_phpMy_sql_with_php
My_sql_with_php
 
Php sessions & cookies
Php sessions & cookiesPhp sessions & cookies
Php sessions & cookies
 
Session and Cookies
Session and CookiesSession and Cookies
Session and Cookies
 
PHP Cookies, Sessions and Authentication
PHP Cookies, Sessions and AuthenticationPHP Cookies, Sessions and Authentication
PHP Cookies, Sessions and Authentication
 
Session & Cookies
Session & CookiesSession & Cookies
Session & Cookies
 
Who is Afraid of Cookies?
Who is Afraid of Cookies?Who is Afraid of Cookies?
Who is Afraid of Cookies?
 
Php cookies
Php cookiesPhp cookies
Php cookies
 
Php sessions
Php sessionsPhp sessions
Php sessions
 
Remove php calls and scale your site like crazy !
Remove php calls and scale your site like crazy !Remove php calls and scale your site like crazy !
Remove php calls and scale your site like crazy !
 
Cookies
CookiesCookies
Cookies
 
Web Cookies
Web CookiesWeb Cookies
Web Cookies
 

En vedette

Web app development_html_css_03
Web app development_html_css_03Web app development_html_css_03
Web app development_html_css_03
Hassen Poreya
 
Web app development_database_design_er-mapping_12
Web app development_database_design_er-mapping_12Web app development_database_design_er-mapping_12
Web app development_database_design_er-mapping_12
Hassen Poreya
 
Web app development_my_sql_08
Web app development_my_sql_08Web app development_my_sql_08
Web app development_my_sql_08
Hassen Poreya
 
Web app development_php_07
Web app development_php_07Web app development_php_07
Web app development_php_07
Hassen Poreya
 
Web app development_php_04
Web app development_php_04Web app development_php_04
Web app development_php_04
Hassen Poreya
 
Web app development_php_06
Web app development_php_06Web app development_php_06
Web app development_php_06
Hassen Poreya
 
Web app development_database_design_11
Web app development_database_design_11Web app development_database_design_11
Web app development_database_design_11
Hassen Poreya
 
Web app development_php_05
Web app development_php_05Web app development_php_05
Web app development_php_05
Hassen Poreya
 
Web app development_database_design_10
Web app development_database_design_10Web app development_database_design_10
Web app development_database_design_10
Hassen Poreya
 
Web app development_my_sql_09
Web app development_my_sql_09Web app development_my_sql_09
Web app development_my_sql_09
Hassen Poreya
 
Web app development_crud_13
Web app development_crud_13Web app development_crud_13
Web app development_crud_13
Hassen Poreya
 
Web app development_html_02
Web app development_html_02Web app development_html_02
Web app development_html_02
Hassen Poreya
 
Web app development_html_01
Web app development_html_01Web app development_html_01
Web app development_html_01
Hassen Poreya
 

En vedette (16)

Enterprises resource planning
Enterprises resource planningEnterprises resource planning
Enterprises resource planning
 
Web app development_html_css_03
Web app development_html_css_03Web app development_html_css_03
Web app development_html_css_03
 
Web app development_database_design_er-mapping_12
Web app development_database_design_er-mapping_12Web app development_database_design_er-mapping_12
Web app development_database_design_er-mapping_12
 
Web app development_my_sql_08
Web app development_my_sql_08Web app development_my_sql_08
Web app development_my_sql_08
 
Web app development_php_07
Web app development_php_07Web app development_php_07
Web app development_php_07
 
Web app development_php_04
Web app development_php_04Web app development_php_04
Web app development_php_04
 
Web app development_php_06
Web app development_php_06Web app development_php_06
Web app development_php_06
 
Web app development_database_design_11
Web app development_database_design_11Web app development_database_design_11
Web app development_database_design_11
 
Learn to Code with JavaScript - Choose Your Own Adventures
Learn to Code with JavaScript - Choose Your Own AdventuresLearn to Code with JavaScript - Choose Your Own Adventures
Learn to Code with JavaScript - Choose Your Own Adventures
 
Web app development_php_05
Web app development_php_05Web app development_php_05
Web app development_php_05
 
Web app development_database_design_10
Web app development_database_design_10Web app development_database_design_10
Web app development_database_design_10
 
Web app development_my_sql_09
Web app development_my_sql_09Web app development_my_sql_09
Web app development_my_sql_09
 
CodeIgniter Practice
CodeIgniter PracticeCodeIgniter Practice
CodeIgniter Practice
 
Web app development_crud_13
Web app development_crud_13Web app development_crud_13
Web app development_crud_13
 
Web app development_html_02
Web app development_html_02Web app development_html_02
Web app development_html_02
 
Web app development_html_01
Web app development_html_01Web app development_html_01
Web app development_html_01
 

Similaire à Web app development_cookies_sessions_14

Cookies and sessions
Cookies and sessionsCookies and sessions
Cookies and sessions
salissal
 
19_JavaScript - Storage_Cookies-tutorial .pptx
19_JavaScript - Storage_Cookies-tutorial .pptx19_JavaScript - Storage_Cookies-tutorial .pptx
19_JavaScript - Storage_Cookies-tutorial .pptx
ssuser4a97d3
 
Ch4(saving state with cookies and query strings)
Ch4(saving state with cookies and query strings)Ch4(saving state with cookies and query strings)
Ch4(saving state with cookies and query strings)
Chhom Karath
 
Openam misc
Openam miscOpenam misc
Openam misc
Jose R
 
Web Site Optimization
Web Site OptimizationWeb Site Optimization
Web Site Optimization
Sunil Patil
 
Web site optimization
Web site optimizationWeb site optimization
Web site optimization
Sunil Patil
 

Similaire à Web app development_cookies_sessions_14 (20)

PHP-Cookies-Sessions.pdf
PHP-Cookies-Sessions.pdfPHP-Cookies-Sessions.pdf
PHP-Cookies-Sessions.pdf
 
Lecture 11 - PHP - Part 5 - CookiesSessions.ppt
Lecture 11 - PHP - Part 5 - CookiesSessions.pptLecture 11 - PHP - Part 5 - CookiesSessions.ppt
Lecture 11 - PHP - Part 5 - CookiesSessions.ppt
 
Cookies & Session
Cookies & SessionCookies & Session
Cookies & Session
 
4.4 PHP Session
4.4 PHP Session4.4 PHP Session
4.4 PHP Session
 
Cookies and sessions
Cookies and sessionsCookies and sessions
Cookies and sessions
 
PHP COOKIES AND SESSIONS
PHP COOKIES AND SESSIONSPHP COOKIES AND SESSIONS
PHP COOKIES AND SESSIONS
 
19_JavaScript - Storage_Cookies-tutorial .pptx
19_JavaScript - Storage_Cookies-tutorial .pptx19_JavaScript - Storage_Cookies-tutorial .pptx
19_JavaScript - Storage_Cookies-tutorial .pptx
 
Ch4(saving state with cookies and query strings)
Ch4(saving state with cookies and query strings)Ch4(saving state with cookies and query strings)
Ch4(saving state with cookies and query strings)
 
javaScriptCookies.pptx
javaScriptCookies.pptxjavaScriptCookies.pptx
javaScriptCookies.pptx
 
Manish
ManishManish
Manish
 
Cookies
CookiesCookies
Cookies
 
Web Browsers And Other Mistakes
Web Browsers And Other MistakesWeb Browsers And Other Mistakes
Web Browsers And Other Mistakes
 
Javascript issues and tools in production for developers
Javascript issues and tools in production for developersJavascript issues and tools in production for developers
Javascript issues and tools in production for developers
 
12 core technologies you should learn, love, and hate to be a 'real' technocrat
12 core technologies you should learn, love, and hate to be a 'real' technocrat12 core technologies you should learn, love, and hate to be a 'real' technocrat
12 core technologies you should learn, love, and hate to be a 'real' technocrat
 
4 php-advanced
4 php-advanced4 php-advanced
4 php-advanced
 
Download It
Download ItDownload It
Download It
 
PHP Making Web Forms
PHP Making Web FormsPHP Making Web Forms
PHP Making Web Forms
 
Openam misc
Openam miscOpenam misc
Openam misc
 
Web Site Optimization
Web Site OptimizationWeb Site Optimization
Web Site Optimization
 
Web site optimization
Web site optimizationWeb site optimization
Web site optimization
 

Dernier

Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
Joaquim Jorge
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
Delhi Call girls
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
Igalia
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
giselly40
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
vu2urc
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Igalia
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
UK Journal
 

Dernier (20)

Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024Finology Group – Insurtech Innovation Award 2024
Finology Group – Insurtech Innovation Award 2024
 
Advantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your BusinessAdvantages of Hiring UIUX Design Service Providers for Your Business
Advantages of Hiring UIUX Design Service Providers for Your Business
 
2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...2024: Domino Containers - The Next Step. News from the Domino Container commu...
2024: Domino Containers - The Next Step. News from the Domino Container commu...
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?A Year of the Servo Reboot: Where Are We Now?
A Year of the Servo Reboot: Where Are We Now?
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘🐬 The future of MySQL is Postgres 🐘
🐬 The future of MySQL is Postgres 🐘
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 

Web app development_cookies_sessions_14

  • 1. hasen@microcis.net July 24, 2013Hassen poreya Trainer, Cresco Solution Afghanistan Workforce Development Program Maintaining State in PHP Cookies, Sessions
  • 2. HTML – a Stateless Environment  Stateless  Having no information about what occurred previously.  HTTP – Stateless  FTP – State full  Most modern applications maintain state, which means that they remember what you were doing last time you ran the application, and they remember all your configuration settings.  This is extremely useful because it means you can mould the application to your working habits.
  • 3. HTML – a Stateless Environment  Each request for a new web page is processed without any knowledge of previous pages requested or processed.  So how they do browse multiple pages?!  A user ‘logs in’ to a web page. Once logged in, the user can browse the site while maintaining their logged in state.
  • 4. Is PHP Stateless?  Variables are destroyed as soon as the page script finishes executing.  The script can access the ‘referrer’, the address of the previous page, although this can’t really be trusted. $_SERVER['HTTP_REFERER']  It is possible to add data to a database / text file to add persistent data, although this is not connected with a particular user…
  • 5. Is PHP Stateless?  The answer is NO!  The usual way to maintain state in PHP pages is via the use of Sessions.  To understand how these work, we need to have a look at what and how cookies are.
  • 6. What is a Cookie?  A cookie is a small text file that is stored on a user’s computer.  Each cookie on the user’s computer is connected to a particular domain.  Each cookie is being used to store up to 4kB of data.  A maximum of 20 cookies can be stored on a user’s PC per domain.
  • 7. Example  User sends a request for page at www.example.com for the first time!
  • 8. Example  Server sends back the page xhtml to the browser AND stores some data in a cookie on the user’s PC.
  • 9. Example  At the next page request for domain www.example.com, all cookie data associated with this domain is sent too.
  • 10. Set Cookie setcookie(name,value,expire,path, domain,secure)  name= cookie name  value= data to store (string)  expire= UNIX timestamp when the cookie expires. Default is that cookie expires when browser is closed.  path= Path on the server within and below which the cookie is available on.  domain= Domain at which the cookie is available for.  secure= If cookie should be sent over HTTPS connection only. Default false.
  • 11. Set Cookie setcookie(‘name’,’Robert’)  This command will set the cookie called name on the user’s PC containing the data Robert.  It will be available to all pages in the same directory or subdirectory of the page that set it (the default path and domain).  It will expire and be deleted when the browser is closed (default expire).
  • 12. Set Cookie setcookie(‘age’,’20’,time()+60*60*24 *30)  This command will set the cookie called age on the user’s PC containing the data 20.  It will be available to all pages in the same directory or subdirectory of the page that set it (the default path and domain).  It will expire and be deleted after 30 days.
  • 13. Set Cookie setcookie(‘gender’,’male’,0,’/’)  This command will set the cookie called gender on the user’s PC containing the data male.  It will be available within the entire domain that set it.  It will expire and be deleted when the browser is closed.
  • 14. Reading Cookies  All cookie data is available through the super global $_COOKIE:  $variable = $_COOKIE[‘cookie_name’]  or  $variable = $HTTP_COOKIE_VARS[‘cookie_name’];  e.g.  $age = $_COOKIE[‘age’]
  • 15. Deleting Cookies  To remove a cookie, simply overwrite the cookie with a new one with an expiry time in the past… setcookie(‘cookie_name’,’’,time()-6000)  Note that theoretically any number taken away from the time()function should do, but due to variations in local computer times, it is advisable to use a day or two.
  • 16. Header Request – Must be first  As the setcookie command involves sending a HTTP header request, it must be executed before any xhtml is echoed to the browser, including whitespace. Correct Incorrect Empty or HMTL code
  • 17. Malicious Usage of Cookies  There is a bit of a stigma attached to cookies –and they can be maliciously used (e.g. set via 3rdparty banner ads).  The important thing to note is that some people browse with them turned off.
  • 18. Cookies VS Sessions  Limited storage space  Insecure storage client- side  User controlled  Practically unlimited space  Reasonably securely stored server-side  No user control Cookies Sessions
  • 19. Starting a Session session_start();  Starting session always comes at the first line of your php code.  DO NOT start a session after any print or echo statement!
  • 20. Storing Session Data  The $_SESSION super global array can be used to store any session data.  e.g. $_SESSION[‘name’] = $name; $_SESSION[‘age’] = $age;
  • 21. Reading Session Data  Data is simply read back from the $_SESSION super global array.  e.g. $name = $_SESSION[‘name’]; $age = $_SESSION[‘age’];
  • 23. Let’s do the practice
  • 24. hasen@microcis.net July 24, 2013Hassen poreya Trainer, Cresco Solution Any Questions! Afghanistan Workforce Development Program