Forum Moderators: coopster
I really need a way to pass values back from processlogin.php to login.php without using $_SESSION (this won't work if cookies are disabled, and I don't want to pass the sessionID in URL)
I could redirect, using the?varname=XX in the URL and then retrive via $_GET in login.php, but this is a bit messy IMO
Can I use the $_POST array somehow? Or is there another alternative?
processlogin.php does not have any visible controls - it just does validation before returning the results to login.php
Thanks for any advice.
self.setTimeout("document.form.submit()", 1000); //after 1000 miliseconds=1s. I don't know the least time. Or you can do this onLoad. It will be even better.
However as I know this way is very jeopardizing to the security of your page. Because anybody can prepare such form to submit and therefore be able to login without really doing so.
Therefore I would recommend using the login.php as a validator (I do so). And yes, the Session can be passed via url.
Best regards
Michal Cibor
I'm just wondering if there's a way to "inject" values into the $_POST superglobal (in PHP) before doing a redirection to "simulate" the POSTing of a form?
Can I modify the HTTP headers to achieve this?
I have kludged a solution that involves passing the session ID in the URL if cookies are disabled.
Not what I wanted, but it works...
