(PHP) I set the cookie in my login.php page in this way:
setcookie('cookie_id',$id);
I print the cookie and I see the correct value but when I change page with:
header($login_url);
I lose the all cookie and I don't know why. Anybody can help me?
You have to specify / as path in setcookie() function, so cookie will be available on every path of your site. To do this:
setcookie('cookie_id', $id, 0, '/');
Note that third argument is expire time which is set to 0 as default. According to documentation it means that:
If set to 0, or omitted, the cookie will expire at the end of the session (when the browser closes).
If you have human urls or subfolders (like www.domain.com/path1/path2/), then you must set cookie path to / to work for all paths, not just current one.
setcookie('cookie_id', $cookie_id, time() + 60*60*24*30, '/');
From PHP manual:
The path on the server in which the cookie will be available on. If set to '/', the cookie will be available within the entire domain . If set to '/foo/', the cookie will only be available within the /foo/ directory and all sub-directories such as /foo/bar/ of domain . The default value is the current directory that the cookie is being set in.
Related
I'm trying to set a cookie in a subfolder /admin/setcookies.php . I'm using this code for doing that:
setcookie(
"username",
$myusername,
time()+60*60*24*365,
"/",
$_SERVER['SERVER_NAME'],
1
);
Now when I test if my cookies are set from the root : /testcookies.php , I can see they aren't actually set. And when I do the same from /admin/testcookies.php , they are in fact set.
What am I doing wrong? The domain name is correct, and the path is set to the root... I don't know what else could be wrong at this point.
The 6th parameter of setcookie() is set to true:
Indicates that the cookie should only be transmitted over a secure HTTPS connection from the client
Your page at /testcookies.php must be accessed through HTTPS for the browser to send such a cookie.
I have set up a simple login page on http://mywebsite.com/control. When you login, it places a cookie called user on your computer. To set the cookie I simply use:
setcookie("user", $_POST['IGN']);
When I am on the directory /control, it works fine. For example, if I use the code:
echo $_Cookie['user'];
it echos out the cookie information. However, if I do this on any page that is not in the /control directory, it says:
Notice: Undefined index: user in /var/www/other/vars.php on line 16
Line 16 is where it echos. This is an image of the cookie information in Chrome:
You should use:
setcookie("user", $_POST['IGN'],0,'/');
if you want cookie to be visible in the whole domain
You should also use:
echo $_COOKIE['user'];
with capital letters
You should also read more about setting cookies at http://www.php.net/manual/en/function.setcookie.php - by default cookies are set only for directory where you set cookie. That's why you need to add as 4th parameter '/'
It does that because you are not setting the path parameter when you set your cookie, and by default, PHP will take the current directoy you're in.
Try this.
setcookie("cookiename", "value", time()+3600, "/", "mywebsite.com");
i'm using codeigniter and i have all the routes like this
www.example.com/path1/
www.example.com/path1/path_/
In every page i do a control if SESSION['lang'] is set.
if it's set I also set the Cookie
setcookie("lang", $_SESSION["LANG"], time() + (60* 60 * 24 * 30 *12 *20), "./");
But i have a problem...
when I do Logout from admin area I must delete the session and also the cookie.
But if i Delete a cookie in this way
setcookie("lang",'', time() - (60* 60 * 24 * 30 *12 *20), "./");
it will delete only one cookie lang.
I must delete all cookie "lang" of different path.
Someone can help me?!
To set a global cookie for the entire site the path should be "/" without the dot.
"/" means the root of the website.
"./" means current directory.
In your case to set the global cookie it should be:
setcookie("lang", $_SESSION["LANG"], time() + (60* 60 * 24 * 30 *12 *20), "/");
To delete the global cookie:
setcookie("lang",'', 1, "/");
Regarding your actual question, "Delete all cookie with same name and different path" there is no official documented way to do it. There is a hack using the $_SERVER['HTTP_COOKIE'] variable like here.
But this variable is not documented and could be non existent on some servers.
The way which you use to set a cookie stores a separate cookie for each page/URL that you visit because:
setcookie(..., ..., ..., "./"); // the 4th parameter means "this directory"
So if the script get executed on every page then every directory and subdirectory that you visit will get a separate cookie. However, this is not necessary if you want to set the "lang" parameter for a whole part of the domain.
If you change it to something like "/foo/" then this cookie will be valid for any http://www.example.com/foo/ and any subdirectory of www.example.com/foo/, see http://php.net/manual/en/function.setcookie.php:
Path
The path on the server in which the cookie will be available on. If
set to '/', the cookie will be available within the entire domain. If
set to '/foo/', the cookie will only be available within the /foo/
directory and all sub-directories such as /foo/bar/ of domain. The
default value is the current directory that the cookie is being set
in.
Because this will store only one cookie for the whole part of the domain, you can easily invalidate it using your code with the 4th parameter changed:
setcookie(..., ..., ..., "/foo/");
I hope this helps.
Codeigniter has a method to delete cookies
delete_cookie()
Lets you delete a cookie. Unless you've set a custom path or other values, only the name of the cookie is needed:
delete_cookie("name");
This function is otherwise identical to set_cookie(), except that it does not have the value and expiration parameters. You can submit an array of values in the first parameter or you can set discrete parameters.
delete_cookie($name, $domain, $path, $prefix)
With this function you can delete the cookie of any path or domain. Perhaps you need to write this function so many times as "domain/path" you have
http://ellislab.com/codeigniter/user-guide/helpers/cookie_helper.html
php manual has setcookies syntax like this
setcookie ($name, $value, $expire, $path, $domain, $secure, $httponly)
It is said that cookies are stored on the remotely in client side. The syntax has path var that if applied cookies will be stored on the server side.
Now suppose if I mention that path var "/". And on user named denish log in and I create a cookie for username for remember me functionality
setcookie('site_username','denish',time + 3600,'/','.xyz.com')
Now each time the different user logs in. Would it over write the previous cookie or new cookie will be created?
What if I want to create a cookie client side and also want to apply $domain var. Is it possible?
Cookies are always stored in the client. The path only sets restrictions to what remote pages can access said cookies. For example, if you set a cookie with the path "/foo/" then only pages in the directory "/foo/" and subdirectories of "/foo/" can read the cookie.
The domain does the same restriction, only with subdomains.
Cookies with the same name will overwrite each other, yes.
I believe you cannot set a cookie to another domain other than the page you're on due to security issues.
You're incorrect as to the use of the path argument from the manual:
The path on the server in which the cookie will be available on.
Cookies are always stored on the client's machine.
If you use different $paths you can have two cookies with the same name.
setcookie("foobar", "root", time()+3600, "/");
setcookie("foobar", "test", time()+3600, "/test");
The first cookie (root) can be accessed using any $path in this domain, except for /test/*. In /test/* only the second cookie can be accessed. Both cookies are stored by the user's browser and the browser decides which cookie to provide based on which cookie's $path matches the current URL.
Ok I have a cookie set, and I can clearly see it if I go to private data in Firefox... ok so when I echo it on one page in a certain directory it works, (www.example.com/dir), but on the index page of the site (www.example.com), it wont echo, it says the cookie is not set. Yes I have cookies enabled, yes I tried clearing cache and all that. Any ideas? PHP btw
Which directory are you in when the cookie gets set?
From the PHP manual on setcookie(), emphasis mine:
Path
The path on the server in which the cookie will be available on. If set to '/', the cookie will be available within the entire domain . If set to '/foo/', the cookie will only be available within the /foo/ directory and all sub-directories such as /foo/bar/ of domain . The default value is the current directory that the cookie is being set in.
Cookies can be bound to a specific domain, subdomain, path, and protocol (http/https). You need to specify the path when setting the cookie in PHP:
setcookie("TestCookie", "Value", time()+3600 , '/' );
The fourth parameter binds it to the root of the site and it will be available in any subdirectory of the main site.
If you want it available on the main domain and any subdomain, supply the fifth parameter like this:
setcookie("TestCookie", "Value", time()+3600 , '/', '.example.com' );
Now it will be readable at:
www.example.com
example.com/newdir
awesome.example.com/newdir
You need to check the path that the cookie is being set.
If it's not '/', there's your answer!
Yes try this, I was also facing this problem but resolved by below code.
setcookie("TestCookie", "Value", time()+3600 , '/' );
Set your path option; the default value is the current directory that the cookie is being set in. Because you're setting the cookie in the directory /dir , its only available within that directory or below it.
You get around this by explicitly setting the path, ie.
setcookie(name,value,expire,path,domain,secure)
Set the path to "/".
setcookie("Cookie_name", "Cookie_Value", time()+3600 , '/' );
fourth parameter ('/') will make your cookies accessible to pages in parent directories.
You need to set the $path to / in setcookie(), if you want to access it in all directories
Cookies Must Be Set Before Page Output !!!
Since cookies are sent by the script to the browser in the HTTP headers, before your page is sent, they must be set before you even send a single line of HTML or any other page output. The moment you send any sort of output, you are signalling the end of the HTTP headers. When that happens, you can no longer set any cookie. If you try, the setcookie() function will return FALSE, and the cookie will not be sent.
setcookie('cookie_username', $cookie_username, time() + (86400 * 30), "/"); // 86400 = 1 day, '/' denotes cookie available in entire directory.
and in another page:
$username = $_COOKIE['cookie_username'];
also make sure that browser is not blocking cookies.
If you want to use cookies in sub domain also:
setcookie('cookie_username', $cookie_username, time() + (86400 * 30), "/", ".subdomain.com"); // 86400 = 1 day, '/' denotes cookie available in entire directory.