Welcome Guest, Not a member yet? Register   Sign In
CI session

I have heard that session in CI leaves cookie on client, so you have to rely on native php session for security reasons. Is this true?

Any solution to resolve this issue?


How about reading the user guide?
Quote:The Session class stores session information for each user as serialized (and optionally encrypted) data in a cookie. It can also store the session data in a database table for added security, as this permits the session ID in the user's cookie to be matched against the stored session ID. By default only the cookie is saved. If you choose to use the database option you'll need to create the session table as indicated below.


there is a "native session" library already...

Native Session

[quote author="cindor" date="1236623266"]hi!

there is a "native session" library already...

Native Session[/quote]

Thanks! Just want to make sure - Is it as safe as native php session?

Theme © iAndrew 2016 - Forum software by © MyBB