[prev in list] [next in list] [prev in thread] [next in thread] 

List:       phplib-dev
Subject:    Re: [phplib-dev] BUG: Transparent Session IDs + forms
From:       Michael Haertl <mhaertl () weiden ! de>
Date:       2000-12-20 11:07:08
[Download RAW message or body]

I forgot to mention: 

The automatic hidden field adding was added to PHP in a recent version,
possibly 4.0.3pl1

Michael Haertl wrote:
> 
> Hi,
> 
> i don't know if this is already fixed in the CVS.
> 
> And this here regards only applications which don't use the phpLib
> sessions but rely on transparent session management of php4.
> 
> If you do, php4 will automatically add a hidden input field with the
> SessionID to your forms. This is because URL variables will not be sent
> by some browsers if added to the form action URL.
> 
> But this behaviour breaks the js form validation of phpLib forms. The
> hidden field gets insertet right after the <form..> tag. So the
> enumeration of the input fields changes and the wrong js function is
> applied to an input field.
> 
> Maybe this is not of interest for you because you don't rely on
> transparent sessions and prefer your own session functions. But i
> thought i let you know. I think transparent sessions can be useful in
> some cases.

---------------------------------------------------------------------
To unsubscribe, e-mail: phplib-dev-unsubscribe@lists.netuse.de
For additional commands, e-mail: phplib-dev-help@lists.netuse.de

[prev in list] [next in list] [prev in thread] [next in thread]