【发布时间】:2021-04-21 18:09:41
【问题描述】:
我从网上了解到,用户名和密码等机密信息应该通过session而不是cookies发送,因为它们很容易受到攻击。
我的接受输入的 HTML 表单:
<body>
<h2>Cafeteria registration</h2>
<form class="details" method="POST">
Full name: <input type="text" placeholder="Please avoid any kind of prefixes" id="name" size=25 oninput="login()"><br><br>
Organization:<div id="org"><input type="checkbox" id="cb1" onclick="check()">ID no: <input type="number" id="org_number" style="visibility: hidden"><br><br>
<input type="checkbox" id="cb2" onclick="check()">Mobile No: <input type="tel" id="ph_number" style="visibility: hidden" required></div><br><br>
E-mail: <input type="email" id="email" size=25><br><br>
</form>
<button id="button" style="background-color: whitesmoke">Register</button>
<script src="back_end.js" async></script>
</body>
存储来自 html 表单的输入的 Javascript:
sessionStorage.setItem("name",document.getElementById("name").value);
sessionStorage.setItem("ID_No",document.getElementById("org_number").value);
sessionStorage.setItem("Mobile_No",document.getElementById("ph_number").value);
sessionStorage.setItem("Email",document.getElementById("email").value);
PHP 读取值:
<?php
session_start();
var_dump($_SESSION); //This shows to be completely empty
var_dump($_COOKIE); //Surprisingly, all the values show in this array
?>
我的$_COOKIE 数组填充了值,但我的$_SESSIONarray 完全为空。为什么?
【问题讨论】:
标签: javascript php session