keep session var after redirect

Question

Buppy 0 Junior Poster in Training

12 Years Ago

Hi,

I have this situation - an user clicks a link in my site. That link sets a session variable and then redirect the user to another page. That another page then redirects the user back to the previous page, but the previously set session variable is gone. How to keep the session variable in this case?

Thanks

php

3 Contributors
6 Replies
166 Views
2 Hours Discussion Span
Latest Post 12 Years Ago Latest Post by diafol

pritaeas 2,194 ¯\_(ツ)_/¯

12 Years Ago

Are you sure every page starts with session_start(); ?

diafol

12 Years Ago

This is a little cryptic Buppy, care to share the code so we can see what's going on?

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

Buppy 0 Junior Poster in Training · Answer 1 · 2012-07-02T13:43:30+00:00

Pretty sure, when debugging $_SESSION, it shows me other session data that shoud be there, it just seems to be resetting the session after the redirect back.

Buppy 0 Junior Poster in Training · Answer 2 · 2012-07-02T13:45:06+00:00

It's basically the OAuth workflow, just in this case i need to keep that specific session variable after i get redirected back with my access key.

Buppy 0 Junior Poster in Training · Answer 3 · 2012-07-02T13:58:36+00:00

        if (isset($_GET['domain'])) {
            //Step 0 - if domain var is set, then save it and proceed to step 1
            $_SESSION['domain'] = $_GET['domain'];
        }

        if (isset($_GET['code'])) {
            //Step 2 - codes is set, get the access key and redirect back to the domain provided before
            $ch = curl_init();
            curl_setopt($ch, CURLOPT_USERAGENT, "MyUseragent");
            curl_setopt($ch, CURLOPT_COOKIEJAR, "curl_cookie.txt");
            curl_setopt($ch, CURLOPT_URL,"OAuth key URL");
            curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
            curl_setopt($ch, CURLOPT_POST,1);
            curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
            $result = curl_exec ($ch);      
            curl_close ($ch);       
            $result = json_decode($result,true);
            //Here's the problem - the domain var is empty after redirect from the OAuth auth URL
            //header('Location:http://'.$_SESSION['domain'].'.mydomain.com');
            pr($_SESSION);
        } else {
            //Step 1 - get OAuth code, then redirect back to this script with code
            header('Location: OAuth auth URL');
        }

diafol · Answer 4 · 2012-07-02T15:45:56+00:00

OK, I'm trying to get this right in my head. The main site (e.g. www.example.com) sends info to a subdomain, like www.subdomain.example.com (via header) and then receives info (auth info) back to the calling same page? So are we looking at cross-sub-domain session? If so, you may have a few ways of sorting this - in your php.ini file or even htaccess file. You may even be able to set in script like this:

ini_set('session.cookie_domain', '.example.com' );

I'll stop for now, is that the sort of thing?