ok, here's what the application is about.
As an administrator, you log in to the main application. session id's keep track that you are authenticated, and who you are.
In the application, you can get a list of the other users on the system. From that user list, I want to be able to launch a new window that logs you in as that user, while leaving your administrator window alone. The new window would need new session information because of the new login.
I've got it working now where you can do it by using the same window, and changing the session info to reflect the new user and go on your merry way. It just means that you would have to log in to the administrator account again later.
So, what you're saying is that I can make up a new session ID in the URL of the launched window ?
hmmm...I think that might just work...I'll try it...
Tim.
At 03:16 PM 3/8/2004, Chris Shiflett wrote:
--- Tim Traver <[EMAIL PROTECTED]> wrote: > What I want to be able to do is to open a new window from my > application that has a new session, without disturbing the current > session.
Can you elaborate on this a little? This approach seems very odd to me, and I feel certain that it must be unnecessary. But, you never know...
> When I launch a new window, it keeps the same session as the one that > it was launched from.
Of course. It's the same browser, the same computer, the same user, etc. This is the point of sessions.
> Any suggestions ???
For whatever links that you want to spawn a new session, you can include a different session identifier on the URL. As long as both instances of the browser maintain their own unique session identifier through URL proagation, you can make this happen. But, this approach seems very, very ugly.
Chris
===== Chris Shiflett - http://shiflett.org/
PHP Security - O'Reilly Coming mid-2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/
-- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
