Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Is storing a session id in a cookie a better practice than a get var?

Tags:

security

php

session

The title pretty much says it all. A cookie seems to have a few advantages to me; however, I'll wait to see what others say.

Also - assuming a cookie is better, what can be done to make passing the session by GET variable better?

Specifically I'm thinking about PHP; however, this should apply generally.

like image 999
Tim Lytle Avatar asked Dec 29 '22 05:12

Tim Lytle

1 Answers

Storing it in a cookie as opposed to in a GET var has at least one advantage, in that the session ID'd URL will never be bookmarked by any user.

like image 112
karim79 Avatar answered Jan 13 '23 18:01

karim79
Sign in to Comment

Related questions

mysql/php insert/update on duplicate key
How can I include CSS in php?
faster than in_array?
Adding a logger in production
Javascript validation and PHP validation?
Magento Collection Join Between Different Modules
Calling F# (.Net dll) code from php
Is it possible to check whether a request is from <script> tag in PHP?
MySQL: Cannot create table with VARBINARY?
PHP: Output data before and after sleep()?
Is there a way to parse these strings?
Sending lots of data through POST or GET
How do you allow users to dynamically create a web page within a web app? [closed]
What is the javascript equivalent of the PHP auto-assigning array feature?
What does this PHP function return?
HTML5 tag to display syntax highlighting
PHP file_get_contents after php has evaluated
Recursive function via reference
crawling a html page using php?
Removing duplicates with array_unique

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!