duanniling0018 2013-03-23 01:21
浏览 66
已采纳

PHP / Symfony2中每个用户两个会话

I'm using Symfony2, but this is probably just a PHP question.

  1. Based on my understanding (please correct if I am wrong) if I set the session cookie to secure then the cookie only gets sent on secure connections. So on non-secure connections the server in fact can't remember anything based on the user visit. I just want to confirm my understanding on this.

  2. Is it possible to have two session cookies? One for all protocols to store session data that isn't secure (e.g. isn't a user authentication/login) and the second session would be secure-only and handle the login authorisation.

    I know I could set a local cookie for the odd non-secure thing, but I'm really looking at being able to use $_SESSION twice (One for all and one for https-only).

    I feel that using secure cookie is essential for user authentication/login, but I also would like to be able to have some form of session on non-secure pages too.

  3. Does Symfony2 do anything in particular as to any of this? I know it handles sessions quite well through its in-built classes, but does it do anything particular in terms of using secure cookies?

  • 写回答

1条回答 默认 最新

  • dpgu5074 2013-03-23 11:47
    关注

    For (1) - Yes, you're correct

    For (2) - you can have 2 separated $_SESSION (secured and unsecured ones) communicate with each other by passing SessionID in your query string (probably with some hash protection to avoid the naughty users). Some more information here Session lost when switching from HTTP to HTTPS in PHP and Switching between HTTP and HTTPS pages with secure session-cookie

    As recommended in the threads, if possible, you can also make your life easier by considering to make your page HTTPS

    For (3) - I'm not an expert in Symfony2 but quick look through the documentation, it doesn't have any particular tool for you to use in this case, except the support to set if you want your cookie secured or not

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

  • 实体数组/ PHP / MongoDB / Symfony mongodb php symfony
    2018-08-14 15:29
    回答 2 已采纳 I can't add comment on another post so I make my own post. What @iiirxs said is right. You hav t
  • PHP / Symfony:写入CSV大文件 php symfony
    2018-06-13 03:40
    回答 1 已采纳 solution 2, without a database. Read from csv, process and output to csv just like someone mention
  • Symfony2在安装过程失败 php symfony
    2015-06-13 14:16
    回答 1 已采纳 Why don't you use composer?The composer make more than "symfony" command file.
  • PHP框架详解-symfony框架
    2024-07-11 10:59
    kkchenjj的博客 Symfony是一个基于MVC(Model-View-Controller)模式的PHP框架,它提供了一套完整的工具和库,帮助开发者构建高性能、可维护的Web应用程序。框架的核心是组件化设计,这意味着开发者可以自由选择使用框架的全部或...
  • 如何检查用户的平台symfony / PHP php symfony
    2017-06-09 12:07
    回答 1 已采纳 I usually use the MobileDetect library for detecting the device and supported features of the clie
  • 如何在Twig / Symfony2按对象/表头排序表 php symfony
    2016-01-17 21:13
    回答 2 已采纳 In your controller that feeds your view you need to sort the entities; $this->get('doctrine')
  • php bin / console symfony命令给出致命错误 php symfony
    2016-06-24 17:51
    回答 1 已采纳 After hours of looking for solutions I checked the php packages that I had installed and realized
  • php.rar_PHP电子书
    2022-09-20 14:11
    PHP电子书】是针对PHP编程语言的一份学习资源,...在学习过程,配合【国IT认证实验室学习下载频道.txt】和【www.pudn.com.txt】这两个文档,可能还提供了额外的学习资源和社区支持,以加深理解和应用所学知识。
  • Symfony 2包含一个php类 - 旧方法 php symfony
    2013-11-07 09:06
    回答 1 已采纳 You should add \ before class name $ga = new \gapi('email','password');
  • symfony2 php访问另一个实体的对象 php symfony
    2016-02-16 05:39
    回答 1 已采纳 The getContentSelector() method return an ArrayCollection so you need to access to an element of t
  • Symfony php错误消息createQueryBuilder添加了一个WHERE php symfony
    2018-09-05 13:32
    回答 1 已采纳 I found the solution. I had "doctrine/orm": "2.2.*" in my composer.json... I modified it to
  • PHP.zip_php
    2022-09-21 08:09
    2. **数组操作函数**:数组在PHP扮演着重要角色,`count()`用于计算数组元素数量,`array_push()`和`array_pop()`用于在数组末尾添加或移除元素,`array_key_exists()`检查数组是否存在特定键,`array_merge()`...
  • 面试题php基础.pdf
    2021-11-18 12:14
    - 对于字符串的大小写转换,可以使用`ucwords()`函数将字符串每个单词的首字母转换为大写。 ### 数据库操作与正则表达式 - 在数据库操作,当使用自增主键字段时,删除记录并不会影响已生成的ID值,新的记录会...
  • php 多个表单,php – 如何处理多个页面上使用的表单?
    2021-04-13 00:56
    电竞GO的博客 我有一个我需要在多个页面上使用的表单:调节器$emailForm = $this->get('form.factory')->createNamedBuilder('form', 'email_form')->add('email', 'email')->add('subject', 'text')->add('body',...
  • 使用UserApp.io在Symfony2进行用户身份验证
    2020-08-27 18:46
    culi4814的博客 它提供了一个用于处理用户帐户(以及其涉及的许多功能)的Web界面,以及一个将其连接到您自己的Web应用程序的API。 此服务的目的是不必担心您自己的服务器上的身份验证,从而使管理用户身份验证的过程变得更加...
  • dddinaction:在实践Pluralsight课程DDDPHP实现
    2021-02-06 01:07
    存储库包含以下分支,每个分支反映了课程的模块: module-2从第一个有界上下文开始module-3介绍UI和持久层module-5使用聚合和存储库扩展有界上下文module-6引入第二个有界上下文module-7使用域事件我无法完全按照...
  • tarot2:一些塔罗牌实践与PHP
    2021-03-31 06:24
    在IT行业,塔罗牌实践与PHP看似不相关的两个领域,但在这个项目,它们被巧妙地结合在一起。"tarot2"很可能是一个基于PHP开发的塔罗牌占卜应用程序或者是一个教学资源,用于帮助开发者了解如何将PHP与塔罗牌文化...
  • php表单界面,symfony表单与页面实现技巧
    2021-04-14 01:39
    aragakikun的博客 本文实例讲述了symfony表单与页面实现技巧。分享给大家供大家参考。具体如下:symfony开发很简洁,但是功能的数量仍然很缺乏。现在是时候进行一些askeet站点与用户之间的交互了。而HTML交互的根本--除了起链接--...
  • PHP从入门到精通 第三版
    2018-07-19 09:26
    目前流行的PHP框架有Laravel、Symfony、CodeIgniter等,每个框架都有自己的设计哲学和开发范式。学习一个框架,主要需要掌握路由、视图、控制器、模型等MVC模式下的各个组件,以及框架提供的认证、授权、数据库迁移...
  • 没有解决我的问题, 去提问

悬赏问题

  • ¥15 用verilog实现tanh函数和softplus函数
  • ¥15 求京东批量付款能替代天诚
  • ¥15 slaris 系统断电后,重新开机后一直自动重启
  • ¥15 51寻迹小车定点寻迹
  • ¥15 谁能帮我看看这拒稿理由啥意思啊阿啊
  • ¥15 关于vue2中methods使用call修改this指向的问题
  • ¥15 idea自动补全键位冲突
  • ¥15 请教一下写代码,代码好难
  • ¥15 iis10中如何阻止别人网站重定向到我的网站
  • ¥15 滑块验证码移动速度不一致问题