Presentation is loading. Please wait.

Presentation is loading. Please wait.

How to maintain state in a stateless web Shirley Cohen

Published byCuthbert Hardy Modified over 9 years ago

Similar presentations

Presentation on theme: "How to maintain state in a stateless web Shirley Cohen"— Presentation transcript:

1 How to maintain state in a stateless web Shirley Cohen scohen@tacc.utexas.edu

2 What is meant by state? To maintain state means the ability to retain values of variables and to keep track of users who are logged into the system.

3 Methods for maintaining state Cookies Sessions Passing [hidden] variables

4 What is a cookie? Cookies are simple text strings of the form of name=value which are stored persistently on the client’s machine. A URL is stored with each cookie and it is used by the browser to determine whether it should send the cookie to the web server.

5 Cookie Example <?php $count++; setCookie(“count”, $count); ?> Welcome! You’ve seen this site

6 Common Pitfalls Can’t call setCookie() after output has been sent to the browser Can’t have more than 20 cookies/server Cookies ONLY persist until the browser closes UNLESS you specify an expiry date: set Cookie(“name”, $value, time() + 3600);

7 Sessions Sessions are just like cookies, except they store the user’s data on the web server. Every request has a unique session id. Sessions are said to be 30% more reliable than cookies.

8 Session Example ?php // start the session session_start(); print " Step 2 - Register Session "; // Get the user's input from the form $name = $_POST['name']; // Register session key with the value $_SESSION['name'] = $name; // Display the session information: ?> Welcome to my website ! Let's see what happens on the next page.

9 Destroying a Session <?php // start the session session_start(); $_SESSION = array(); session_destroy(); print " Step 5 - Destroy This Session "; if($_SESSION['name']) { print "The session is still active"; } else { echo "Ok, the session is no longer active! "; } ?>

10 Session Tutorial Site http://www.phpfreaks.com/tutorials/41/0.php

11 Passing Variables

12 EID Topic EID module authenticates a user using a valid EID and password which are sent to the UT directory server using SSL. The UT directory server returns a cookie to the requestor and the requestor can then retrieve the relevant information about the user.

13 Web Central Users Use an.htaccess file on the directory they want to protect: Examples:. htaccess file to allow access for any valid UT EID SSLRequireSSL AuthType Anything AuthName Anything EID_Required on require valid-eid.htaccess file to allow restricted access for a small group SSLRequireSSL AuthType Anything AuthName Anything EID_Required on require eid UniqueID1 UniqueID2

14 Web Central EID Tutorial http://www.utexas.edu/learn/restrict/index.html

15 Non-Web Central Users PHP EID Module: David Cook (not stable at the moment) ColdFusion EID Module: Lisa Barden (now stable according to Eng.) Request ITS authorization from: James M Ferrero

16 Questions ???

Download ppt "How to maintain state in a stateless web Shirley Cohen"

Similar presentations

UFCE8V-20-3 Information Systems Development 3 (SHAPE HK)

UFCE8V-20-3 Information Systems Development 3 (SHAPE HK)
Cookies, Sessions. Server Side Includes You can insert the content of one file into another file before the server executes it, with the require() function.

Cookies, Sessions. Server Side Includes You can insert the content of one file into another file before the server executes it, with the require() function.
>> PHP: Access Control & Security. Authentication: Source Authentication Source Hard-coded File-Based The username and password is available inside the.

>> PHP: Access Control & Security. Authentication: Source Authentication Source Hard-coded File-Based The username and password is available inside the.
Website Development Registering Users – Introducing Cookies.

Website Development Registering Users – Introducing Cookies.
Chapter 10 Managing State Information Using Sessions.

Chapter 10 Managing State Information Using Sessions.
©2009 Justin C. Klein Keane PHP Code Auditing Session 7 Sessions and Cookies Justin C. Klein Keane

©2009 Justin C. Klein Keane PHP Code Auditing Session 7 Sessions and Cookies Justin C. Klein Keane
Chapter 10 Managing State Information PHP Programming with MySQL.

Chapter 10 Managing State Information PHP Programming with MySQL.
Using Session Control in PHP tMyn1 Using Session Control in PHP HTTP is a stateless protocol, which means that the protocol has no built-in way of maintaining.

Using Session Control in PHP tMyn1 Using Session Control in PHP HTTP is a stateless protocol, which means that the protocol has no built-in way of maintaining.
Session Management A290/A590, Fall 2014 09/25/2014.

Session Management A290/A590, Fall /25/2014.
CSE 154 LECTURE 13: SESSIONS. Expiration / persistent cookies setcookie(name, value, expiration); PHP $expireTime = time() + 60*60*24*7; # 1 week.

CSE 154 LECTURE 13: SESSIONS. Expiration / persistent cookies setcookie("name", "value", expiration); PHP $expireTime = time() + 60*60*24*7; # 1 week.
Php cookies & sessions.

Php cookies & sessions.
Chapter 10 Maintaining State Information Using Cookies.

Chapter 10 Maintaining State Information Using Cookies.
Sys Prog & Scripting - HW Univ1 Systems Programming & Scripting Lecture 15: PHP Introduction.

Sys Prog & Scripting - HW Univ1 Systems Programming & Scripting Lecture 15: PHP Introduction.
Web Programming Week 10 Old Dominion University Department of Computer Science CS 418/518 Fall 2010 Martin Klein 11/02/10.

Web Programming Week 10 Old Dominion University Department of Computer Science CS 418/518 Fall 2010 Martin Klein 11/02/10.
Open Source Server Side Scripting ECA 236 Open Source Server Side Scripting Cookies & Sessions.

Open Source Server Side Scripting ECA 236 Open Source Server Side Scripting Cookies & Sessions.
Cookies Set a cookie – setcookie() Extract data from a cookie - $_COOKIE Augment user authentication script with a cookie.

Cookies Set a cookie – setcookie() Extract data from a cookie - $_COOKIE Augment user authentication script with a cookie.
CHAPTER 12 COOKIES AND SESSIONS. INTRO HTTP is a stateless technology Each page rendered by a browser is unrelated to other pages – even if they are from.

CHAPTER 12 COOKIES AND SESSIONS. INTRO HTTP is a stateless technology Each page rendered by a browser is unrelated to other pages – even if they are from.
CSC 2720 Building Web Applications Cookies, URL-Rewriting, Hidden Fields and Session Management.

CSC 2720 Building Web Applications Cookies, URL-Rewriting, Hidden Fields and Session Management.
IT533 Lectures Session Management in ASP.NET. Session Tracking 2 Personalization Personalization makes it possible for e-businesses to communicate effectively.

IT533 Lectures Session Management in ASP.NET. Session Tracking 2 Personalization Personalization makes it possible for e-businesses to communicate effectively.
First Name Last Name Please enter your logon information: John Submit Chen Web Server Login.php Web Server Hello John Chen Greetings. php Please enter.

First Name Last Name Please enter your logon information: John Submit Chen Web Server Login.php Web Server Hello John Chen Greetings. php Please enter.

Similar presentations

Ads by Google