Preserving session variables across different domains

by

Cross-domain session ids

Session ids are passed around using cookies by default. Since your websites are on different domains the session cookie does not transfer over, so that’s one thing that prevents cross-domain sessions from working.

One technique to have the session ids transfer over is to append them to the query string of all your requests (PHP even has some degree of built-in support for this). However, this way of doing things has many drawbacks — the most important being that people copy/paste URLs all the time, with all that implies about revealing valid and reusing invalid session ids — and therefore is not recommended.

A much better approach would be to use Javascript to make cross-domain requests across all of the interested domains (which would need to be cooperating in this of course). This way you can seamlessly transfer your session id across as many servers as you need to.

Shared session data

Even if the cookie were not a problem, you would need to have the session data on some storage commonly accessible by all your servers. The default storage is the local filesystem, so again this is something that needs to change if you want cross-domain sessions.

A simple solution to this problem would be to use a custom session handler that stores the data on a database or other globally accessible store.

More Related Contents:

  1. How to store laravel log file data into database(5.5) [closed]
  2. PHP create file with specific name [closed]
  3. BETTER WAY #PHP MVC [closed]
  4. Why does this PDO statement silently fail?
  5. PHP – concatenate or directly insert variables in string
  6. Can I store images in MySQL [duplicate]
  7. I have 2 dates in PHP, how can I run a foreach loop to go through all of those days?
  8. Max size of URL parameters in _GET
  9. What is so wrong with extract()?
  10. Serializing and submitting a form with jQuery and PHP
  11. Enabling the OpenSSL in XAMPP
  12. PHP Difference between array() and []
  13. How to use a switch case ‘or’ in PHP
  14. Convert all types of smart quotes with PHP
  15. Back to previous page with header( “Location: ” ); in PHP
  16. Apache rewrite – get original URL in PHP
  17. Why is crontab not executing my PHP script?
  18. PHP cookie problem – www or without www
  19. What’s the performance cost of “include” in PHP?
  20. Dealing with timezones in PHP
  21. Merge multiple associative arrays and add missing columns with a default value
  22. Add elements to array which has gapped numeric keys to form an indexed array / list
  23. Return only duplicated entries from an array (case-insensitive)
  24. Enabling/installing GD extension? –without-gd
  25. php sample script for pagination [closed]
  26. How to get array key from corresponding array value?
  27. what is “$$” in PHP
  28. Rendering an SVG file to a PNG or JPEG in PHP [duplicate]
  29. Passing data via Modal Bootstrap and getting php variable?
  30. Changing a global variable from inside a function PHP

Leave a Comment