Thank you very much for that solution however I need something slitely different. This is a CMS for distribution... not everybody that's going to use it can go in and edit the config files. I've heard of a command called ini_set(); which temporarily changes it just for the script. Would you mind letting me know how to use ini_set(); with the use only sessions command? Thank-you very very much! > On Wed, 2005-02-16 at 19:07, b1nary Developement Team wrote: > > Hi there guys... First time caller here ;). > > > > I'm currently developing a content management system. One of it's > > features is that it's going to be completely standards compliant (XHTML > > 1.1). > > > > I'm having some troubles however, and they come in the form of > > sessions. When I use session_start(), it throws the PHPSESSID into the > > URL of all of my links and form actions and what not. This is a problem > > because in my forms it throws in a hidden input, which doesn't validate > > right, plus they don't use & insteand of just &. Is there any way > > to stop a session from being passed through the URL? > > > > Sure enable session.use_only_cookies in php.cfg and cookies will be > used. nothing in the page sent to the browser at all as far as I know. > > http://us4.php.net/session > > Bret > > -- > > PHP General Mailing List (http://www.php.net/) > > To unsubscribe, visit: http://www.php.net/unsub.php > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > > > -- -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
