tags:

views:

62

answers:

4
+1  Q: 

PHP Store User Data without Sessions

Is there anyway to store users data such as userid, email, etc to be accessible from all pages of a website after they have logged in, but without using sessions or cookies?

For example:

class User
{
  var $userid;
  var $username;
  var $email;

  .. methods..
}

after they login at login.php

$currentUser = new User($_POST['username'])

now, how do I access $currentUser from another page, such as index.php if I shouldn't use sessions or cookies at all?

so that I could do the following in index.php:

if ($currentUser->userid > -1)
{
  echo "you are logged in as: " . $currentUser->username;
}
else
{
  echo "click here to login";
}

i asked a similar question before, here, but the answers didn't fulfill my needs.

+1  A: 

It's a little far-fetched, I admit:

Edit: The site seem to be popular these days, they will be back online tomorrow. Basically, the study says, that browsers alone are able to provide fingerprint-like data to their vis-à-vis.

The MYYN  2010-05-26 23:00:27
lol. It's still a session by definition, though. Just using different data to identify that session.
webbiedave  2010-05-26 23:02:49
+1 for nice site :-)
nc3b  2010-05-26 23:19:42
A: 

http://drawlogic.com/2008/01/10/howto-sharedobjects-for-local-storage-as3/ ;)

Tobias  2010-05-26 23:15:11
+3  A: 

If you're over-the-top gung-ho with regards to OOP and refuse to directly interact with sessions/cookies, I'd strongly suggest you simply encapsulate sessions instead of remaking them. Even something as simple as this:

//oopsess.php
<?php
    class Session{
        ...
    }

    session_start();

    function getSession(){
        //return the session if one exists
        if (isset($_SESSION['sessionObject']))
            return $_SESSION['sessionObject'];

        //otherwise save and return a new one
        $_SESSION['sessionObject']=new Session();
        return $_SESSION['sessionObject'];
    }
?>

Easily adaptable if you want to store the data clientside - in a cookie - instead of just storing the session id client side (which is what this does).

Edit: Also, teasing aside with regards to OOP, if your code is all very OOP, this is actually a genuinely good way to keep your code clean - not just a way to satisfy your OOP-hungry cravings as I implied above ;)

Cam  2010-05-26 23:15:47
I'm just trying to find out what the best-practices are in the case of logging in, etc. Although I admit, I am slightly hungry for pure OOP PHP coding ;)
Sev  2010-05-26 23:22:20
@Sev: This is the way to do it. On login, you could simply modify the sessionObject. Or perhaps better would be to add a User member to the session object, and have it null unless they're logged in. Sessions are the generally accepted best way to store session data.
Cam  2010-05-27 00:02:09
thanks for the help. +1
Sev  2010-05-27 00:13:25
@Sev: np. One idea to consider which I've seen done before is storing a session id as a cookie and keeping the session in your db. The cool thing about doing that is it allows admin full and easy control over sessions. Plus you can implement neat things like gmail's "log out other sessions" feature. Food for thought :)
Cam  2010-05-27 00:20:33
interesting idea, thank you :)
Sev  2010-05-27 00:32:13
A: 

Sev Said "One idea to consider which I've seen done before is storing a session id as a cookie and keeping the session in your db. The cool thing about doing that is it allows admin full and easy control over sessions. Plus you can implement neat things like gmail's "log out other sessions" feature. Food for thought :)"

Just a note that we do this and it works great.

 2010-05-27 04:41:04
Actually I said that. Also, this would probably have been best to add as a comment under my answer, rather than an answer itself. Oh and welcome to stackoverflow :)
Cam  2010-06-03 04:13:05
Yeah, I figured that -- but I couldn't figure out how to add a comment under yours....... I found the add comment link under this, but there doesn't seem to be one anywhere else. What am I missing? :-)
 2010-06-03 05:21:49

related questions

IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
MySQL/Apache Error in PHP MySQL query
Lightweight IDE for Linux
What PHP framework would you choose for a new application and why?
Why is my ternary expression not working?
How can I get at the matches when using preg_replace in PHP?
Mechanisms for tracking DB schema changes
Wordpress theme development offline tools
Using object property as default for method property
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
How do you debug PHP scripts?
PHP Variables passed by value or by reference?
Best way to implement unit testing in PHP
Connect PHP to an AS/400
Best way to access Exchange using PHP?
PHP Session Security
How do I access a remote form in php?
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP
How would you access Object properties from within an object method?
Flat File Databases in PHP
Best way to allow plugins for a PHP application
Latest information on PHP upcoming releases