[Lafa]

What's the pro's and con's for each of them?

[Acecool]

Not Cookies VS Sessions, but Cookies + Sessions is the best way to go..

[FiRe]

sessions are temporarily held on the server and cookies are permanently stored on the users computer (unless deleted) and sessions are harder to manipulate than cookies...

[Hibame]

Quote:

Originally Posted by FiRe

sessions are temporarily held on the server and cookies are permanently stored on the users computer (unless deleted) and sessions are harder to manipulate than cookies...

Which I belive basicly means sessions are more secure but cookies last longer

[FiRe]

yes, in a way...

[Lafa]

Acecool, FiRe and Hibame: thanks for your help sinc i know atleast a bit about sessions il continue with that for now

oh and if you got some nice tut's on how to do sessions/cookies i would love it, im still very basic.

[DetroitGuy]

I just switched my entire website to sessions last night. Sessions aren't hard to work with, but it can be a bit of a task when you are switching over to sessions.

http://www.phpbuddy.com/article.php?id=14

That is the most basic and most helpful tutorial I found on sessions.

[End User]

Quote:

Originally Posted by Lafa

oh and if you got some nice tut's on how to do sessions/cookies i would love it, im still very basic.

This one is fairly clear; I don't remember where I got it though.

================================================== ====

This tutorial will teach an alternative and effective solution to cookies in PHP which might actually be better for your website and security.

A session is defined in PHP and throughout the Internet as a unique visit to a particular website and it's subsidaries. How can sessions in PHP help you out? Well, let's say you have a dynamic website where you want to have a person sign in with a username and password. Once he's in, you want him to be able to access all parts of your website using that name and password.

There are several ways to "remember" his username and password while he's at your site. One way is to use cookies. The advantage of using cookies is that once he logs in, the cookie stores the visitors information on that computer for as long as the duration of the cookie, even if the session is over. For example, if he logs in and browses around your site and then closes IE, and comes back tomorrow to your page, it'll still remember his name and password. The obvious disadvantage of cookies is that it's a security hazard. Also, some people have cookies disabled so it may not be a viable solution. PHP Sessions are a safer, always working method of storing variables in PHP throughout the duration of the visitors stay.

Alright, let's get started. The first thing you have to place is:
<?
session_start();
?>
The session_start() has to be placed on the every page you want these variables to follow along witht the user. Once you have started the session, to add variables to the session, all you have to do is use the _Session varible. For example, if you want to have a username variable with a value of "Bobert", you write:
<?
$_SESSION["username"] = "Bobert";
?>
Now, just think of $_SESSION["username"] as any other variable like $username. You can do anything you want with it, and it'll follow around your website from one page to another. A session is ended whenever the visitor leaves your site, if you ever want to destroy/kill a variable inside the session, just use this command:
<?
unset($_SESSION["variable"]);
?>
and replace variable, with the name of the variable you want to delete. If you want to end the session all together while still keeping the visitor on your site, use:
<?
session_destroy();
?>
That logs off the user. I hope this tutorial helped you in realizing an alternative, safer way PHP has come up to deal with site global variables than cookies.

[Lafa]

as i said above, i know how the basic of both cookies and session worksa:

for an instant if you a match was made in db:

PHP Code:

$row = $db->fetch_array("SELECT * FROM user WHERE user_auth='$username' AND user_first_name='$first_name'");

if($row) {
    $_SESSION['username'] = $row[0]
    $_SESSION['firstname'] = $row[1]
} 


like that, but well thats what i know about session.

and not pretty much the same about cookie's so if you got something more advacne than that, it would help

thanks for all the reply's tho