tags:

views:

192

answers:

2
Q: 

accessing $_SESSION when using file_get_contents in PHP

I have a page called send.email.php which sends an email - pretty simple stuff - I pass an order id, it creates job request and sends it out. This works fine when used in the context I developed it (Use javascript to make an AJAX call to the URL and pass the order_id as a query parameter)

I am now trying to reuse the exact same page in another application however I am calling it using php file_get_contents($base_url.'admin/send.email.php?order_id='.$order_id). When I call the page this way, the $_SESSION array is empty isempty() = 1.

Is this because I am initiating a new session using file_get_contents and the values I stored in the $_SESSION on login are not available to me within there?

--> Thanks for the feedback. It makes sense that the new call doesn't have access to the existing session...

New problem though:

I now get: failed to open stream: HTTP request failed! When trying to execute:

$opts = array('http' => array('header'=> 'Cookie: ' . $_SERVER['HTTP_COOKIE']."\r\n"));
$context = stream_context_create($opts);
$contents = file_get_contents($base_url.'admin/send.sms.php?order_id='.order_id, false, $context);

YET, the URL works fine if I call it as: (It just doesn't let me access session)

$result file_get_contents($base_url.'admin/send.sms.php?order_id='.$order_id);
A: 

you'd have to include the file or call the respective functions from your send.sms.php script. instead you call it like a webservice (which it isn't)

knittl  2010-04-13 07:16:07
So you saying that it is impossible to do it this way? That PHP just can't do it?
sjw  2010-04-13 07:22:05
@hairdresser, Everything is possible. But it must be also sensible. Why not to just make a function and then include it in both scripts? Include over HTTP is always sign of bad design.
Col. Shrapnel  2010-04-13 08:04:50
it's somehow possible, but it's really bad practice to do it this way
knittl  2010-04-13 08:09:09
Thanks for the feedback> I'm going to look to rewriting the code to suit both calls... I have posted a new question asking for guidance to structure the file and include: http://stackoverflow.com/questions/2635332/best-way-to-program-a-call-to-php
sjw  2010-04-14 06:58:22
A: 

file_get_contents() shouldn't be used anywhere you need authentication/session information transmitted. It's not going to send any cookies, so the user's authentication information will not be included by default.

You can kind of hack around it by including the session identifier (e.g. 'PHPSESSID' by default) as a query parameter in the URL, and have the other script check for that. But transmitting session identifiers in the URL is horribly bad practice, even if it's just to the same server.

$contents = file_get_contents("http://.... /send_sms.php?order_id=$order_id&" . session_name() . '=' . session_id());

To do this properly, use CURL and build a full HTTP request, including the cookie information of the parent page.

Marc B  2010-04-13 17:30:52
Thanks for the feedback> I'm going to look to rewriting the code to suit both calls... I have posted a new question asking for guidance to structure the file and include: http://stackoverflow.com/questions/2635332/best-way-to-program-a-call-to-php
sjw  2010-04-14 06:58:52

related questions

IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
MySQL/Apache Error in PHP MySQL query
Lightweight IDE for Linux
What PHP framework would you choose for a new application and why?
Why is my ternary expression not working?
How can I get at the matches when using preg_replace in PHP?
Mechanisms for tracking DB schema changes
Wordpress theme development offline tools
Using object property as default for method property
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
How do you debug PHP scripts?
PHP Variables passed by value or by reference?
Best way to implement unit testing in PHP
Connect PHP to an AS/400
Best way to access Exchange using PHP?
PHP Session Security
How do I access a remote form in php?
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP
How would you access Object properties from within an object method?
Flat File Databases in PHP
Best way to allow plugins for a PHP application
Latest information on PHP upcoming releases