How session works in new versions? |
Hi.
Security is my issue and i want to know how exactly codeigniter session library works? Does it store all data (key , value) in user cookie or just save a reference ID ? Do we need to add any hash for our keys and values? For example: If i set_userdata('role', 'user') Does client could change the value 'user' to 'admin' and get access to admin panel? Do i need do something like this: set_userdata(sha1('role'), sha1('user')) ![]() Thanks. |
Messages In This Thread |
How session works in new versions? - by mjkhonline - 03-13-2016, 09:49 AM
RE: How session works in new versions? - by siburny - 03-13-2016, 07:46 PM
RE: How session works in new versions? - by mjkhonline - 03-14-2016, 02:04 AM
|