Set the cookie’s expiration date to a time in the past (like one second after epoch, for example). setcookie(“yourCookie”, “yourValue”, 1); This will cause the cookie to expire. 1 is used instead of 0, because 0 sets the cookie to expire at the end of the session.
session_start(); … session_write_close(); … ini_set(‘session.use_only_cookies’, false); ini_set(‘session.use_cookies’, false); ini_set(‘session.use_trans_sid’, false); ini_set(‘session.cache_limiter’, null); session_start(); // second session_start This will prevent php from calling php_session_send_cookie() a second time. See it working. Though restructuring the scripts still seems to be the better option… For PHP 7.2+, you will basically need to re-implement session cookies to avoid errors and … Read more
You should NEVER EVER store a users password in a cookie, not even if it’s hashed!! Take a look at this blog post: Improved Persistent Login Cookie Best Practice (Nov 2006; by bjaspan) (orignal) Quote: When the user successfully logs in with Remember Me checked, a login cookie is issued in addition to the standard … Read more
ini_set(‘session.cookie_httponly’, 1); more information here on the PHP docs
See url with multiple forward slashes, does it break anything?, Are there any downsides to using double-slashes in URLs?, What does the double slash mean in URLs? and RFC 3986 – Uniform Resource Identifier (URI): Generic Syntax. Consensus: browsers will do the request as-is, they will not alter the request. The / character is the … Read more
To add the ; secure suffix to the Set-Cookie http header I simply used the <httpCookies> element in the web.config: <system.web> <httpCookies httpOnlyCookies=”true” requireSSL=”true” /> </system.web> IMHO much more handy than writing code as in the article of Anubhav Goyal. See: http://msdn.microsoft.com/en-us/library/ms228262(v=vs.100).aspx
Laravel’s middleware class \Illuminate\Session\Middleware\StartSession is responsible for starting your session. Before L5.2, this ran on every request because it was part of the global middleware stack. Now, it’s optional because L5.2 wants to allow for both a web UI and an API within the same application. If you open up app/Http/Kernel.php, you’ll see that the … Read more
I recently wrote a simple python script to download the history of a single stock. Here an example how to invoke it: python get_quote_history.py –symbol=IBM –from=2017-01-01 –to=2017-05-25 -o IBM.csv This will download IBM historical prices from 2017-01-01 to 2017-05-25 and save them in IBM.csv file. import re import urllib2 import calendar import datetime import getopt … Read more
As far as I know, crossing sessions between sub-domains is fine, but it won’t carry over to a whole new domain. To do that you need some sort of centralized data method, or an API. Database method: you will have to create a remote MySQL data access so that domain2.com can access the database on … Read more