Hi Tarrant,
--- Tarrant Costelloe <[EMAIL PROTECTED]> wrote:
> I wrote to the list a couple of days ago about issues Planet-Tolkien.com
> members were experiencing with Internet Explorer, where their PHP based
> $_SESSION seemed to be expiring very speradically, where as Mozilla and
> Opera browsers this issue was not occuring and they would stay
> logged-in.
[snip]
> Just curious, but could it be something to do with the use of
> mod_rewrite?
I doubt it, but it's possible (session information passed in the URL and
stripped out, perhaps).
I would recommend trying to replicate this behavior in an isolated
application that only performs session functions and outputs diagnostic
information. If you can replicate the errant behavior in a small sample
script, it will also give you something helpful to post to the list (e.g.,
this code does this bad thing).
Debugging session problems can be difficult, because there is a lot going
on. If IE is losing the session, can you check to see whether it is due to
a lack of a session identifier? The fault is likely with IE, but you must
identify the fault before you can work around it. Off the top of my head,
I can recall IE having trouble with protocol-level redirects (e.g.,
header('Location: ...')), a lack of P3P compliance (only for third-party
cookies, though, I think), and that's all I can think of at the moment.
Hope that helps. Give us a small example script if you can that
demonstrates the problem.
Chris
=====
Chris Shiflett - http://shiflett.org/
PHP Security Handbook
Coming mid-2004
HTTP Developer's Handbook
http://httphandbook.org/
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
