• We’re currently investigating an issue related to the forum theme and styling that is impacting page layout and visual formatting. The problem has been identified, and we are actively working on a resolution. There is no impact to user data or functionality, this is strictly a front-end display issue. We’ll post an update once the fix has been deployed. Thanks for your patience while we get this sorted.

Got a question for the PHP gurus

T

Trevelyan

Diamond Member
Okay, I'm making an online payment system that spans 4 .php pages.

Here is the breakdown:

1st page: Payment amount, product

2nd page: Personal information (name, address, etc.)

3rd page: Payment information (credit card info)

--> All info is collected and parsed to XML processor

4th page: Displays summary of transaction


So, all of this is happening on a secure server. My question is, what is the best/easiest way to pass the data from one page to another? Should I use $_POST on each page and pass the variables along one-by-one... Cookies and sessions?

Any input would be appreciated.
 
Originally posted by: LoKe
Pass them one by one with hidden forms. Use $_POST.
Click to expand...

Or just use a session. Don't store their personal info in a cookie.

It's as easy as starting a session at the top of every php file, and using $_SESSION for the variables.
 
Originally posted by: tfinch2
Originally posted by: LoKe
Pass them one by one with hidden forms. Use $_POST.
Click to expand...

Or just use a session. Don't store their personal info in a cookie.

It's as easy as starting a session at the top of every php file, and using $_SESSION for the variables.
Click to expand...

Yep, I was going to use hidden forms but using a session was just as easy, or easier.

Reference
 
Originally posted by: tfinch2
Originally posted by: LoKe
Pass them one by one with hidden forms. Use $_POST.
Click to expand...

Or just use a session. Don't store their personal info in a cookie.

It's as easy as starting a session at the top of every php file, and using $_SESSION for the variables.
Click to expand...

But isn't that exactly what a session does... stores info in a cookie?
 
Originally posted by: clamum
Originally posted by: tfinch2
Originally posted by: LoKe
Pass them one by one with hidden forms. Use $_POST.
Click to expand...

Or just use a session. Don't store their personal info in a cookie.

It's as easy as starting a session at the top of every php file, and using $_SESSION for the variables.
Click to expand...

Yep, I was going to use hidden forms but using a session was just as easy, or easier.

Reference
Click to expand...

If I pass along information through a $_POST, how secure is it?

Say, for instance, that I pass along the credit card number through a $_POST to the next page, and then pass it through XML... would that be secure or not?
 
Originally posted by: Trevelyan
Originally posted by: tfinch2
Originally posted by: LoKe
Pass them one by one with hidden forms. Use $_POST.
Click to expand...

Or just use a session. Don't store their personal info in a cookie.

It's as easy as starting a session at the top of every php file, and using $_SESSION for the variables.
Click to expand...

But isn't that exactly what a session does... stores info in a cookie?
Click to expand...

Yes, but the Session ID cookie is destroyed as soon as the session is.
 
Originally posted by: Trevelyan
Originally posted by: clamum
Originally posted by: tfinch2
Originally posted by: LoKe
Pass them one by one with hidden forms. Use $_POST.
Click to expand...

Or just use a session. Don't store their personal info in a cookie.

It's as easy as starting a session at the top of every php file, and using $_SESSION for the variables.
Click to expand...

Yep, I was going to use hidden forms but using a session was just as easy, or easier.

Reference
Click to expand...

If I pass along information through a $_POST, how secure is it?

Say, for instance, that I pass along the credit card number through a $_POST to the next page, and then pass it through XML... would that be secure or not?
Click to expand...

If you're passing along a CC, make sure you are using SSL.
 
Originally posted by: tfinch2
Originally posted by: Trevelyan
Originally posted by: tfinch2
Originally posted by: LoKe
Pass them one by one with hidden forms. Use $_POST.
Click to expand...

Or just use a session. Don't store their personal info in a cookie.

It's as easy as starting a session at the top of every php file, and using $_SESSION for the variables.
Click to expand...

But isn't that exactly what a session does... stores info in a cookie?
Click to expand...

Yes, but the cookie is destroyed as soon as the session is.
Click to expand...

I think session data is stored on server. Client only has a session id.
 
Originally posted by: Trevelyan
Originally posted by: tfinch2
Originally posted by: LoKe
Pass them one by one with hidden forms. Use $_POST.
Click to expand...

Or just use a session. Don't store their personal info in a cookie.

It's as easy as starting a session at the top of every php file, and using $_SESSION for the variables.
Click to expand...

But isn't that exactly what a session does... stores info in a cookie?
Click to expand...

Not quite. The cookie identifies a particular session, but the session data is stored only on the server.
 
You must log in or register to reply here.

TRENDING THREADS

Back
Top