Arrays in cookies PHP

Question

How is proper way to store an array in a cookie  in PHP Code example    number ticket 2   info 7  5  1   info 8  5  1

User · Answer

You can also try to write different elements in different cookies  Cookies names can be set as array names and will be available to your PHP scripts as arrays but separate cookies are stored on the user s system  Consider explode   to set one cookie with multiple names and values  It is not recommended to use serialize   for this purpose  because it can result in security holes  Look at setcookie PHP function for more details

User · Answer

Just found the thing needed  Now  I can store products visited on cookies and show them later when they get  back to the site      set the cookies setcookie  product cookiethree     cookiethree    setcookie  product cookietwo     cookietwo    setcookie  product cookieone     cookieone        after the page reloads  print them out if  isset   COOKIE  product           foreach    COOKIE  product   as  name   gt   value             name   htmlspecialchars  name            value   htmlspecialchars  value           echo   name    value  lt br   gt  n

User · Answer

Serialize data   setcookie  cookie   serialize  info   time   3600     Then unserialize data    data   unserialize   COOKIE  cookie      allowed classes    gt  false      After data   info and  data will have the same content

User · Answer

Using serialize and unserialize on cookies is a security risk  Users  or attackers  can alter cookie data  then when you unserialize it  it could run PHP code on your server  Cookie data should not be trusted  Use JSON instead   From PHP s site      Do not pass untrusted user input to unserialize   regardless of the options value of allowed classes  Unserialization can result in code being loaded and executed due to object instantiation and autoloading  and a malicious user may be able to exploit this  Use a safe  standard data interchange format such as JSON  via json decode   and json encode    if you need to pass serialized data to the user

User · Answer

Try serialize    It converts an array into a string format  you can then use unserialize   to convert it back to an array  Scripts like WordPress use this to save multiple values to a single database field   You can also use json encode   as Rob said  which maybe useful if you want to read the cookie in javascript

User · Answer

To store the array values in cookie  first you need to convert them to string  so here is some options   Storing cookies as JSON  Storing code  setcookie  your cookie name   json encode  info   time   3600     Reading code   data   json decode   COOKIE  your cookie name    true     JSON can be good choose also if you need read cookie in front end with JavaScript   Actually you can use any encrypt array to string decrypt array from string methods group that will convert array to string and convert string back to same array  For example you can also use explode implode for array of integers   Warning  Do not use serialize unserialize  From PHP net    Do not pass untrusted user input to unserialize    - Anything that coming by HTTP including cookies is untrusted    References related to security   http   php net manual en function unserialize php refsect1-function unserialize-notes https   www owasp org index php PHP Object Injection https   websec files wordpress com 2010 11 rips ccs pdf https   www notsosecure com remote-code-execution-via-php-unserialize  https   www alertlogic com blog writing-exploits-for-exotic-bug-classes-unserialize    https   hakre wordpress com 2013 02 10 php-autoload-invalid-classname-injection  https   security stackexchange com questions 77549 is-php-unserialize-exploitable-without-any-interesting-methods   As an alternative solution  you can do it also without converting array to string   setcookie  my array 0     value1    time   3600   setcookie  my array 1     value2    time   3600   setcookie  my array 2     value3    time   3600     And after if you will print   COOKIE variable  you will see the following  echo   lt pre gt    print r    COOKIE    die      Array           my array     Array                        0     value1              1     value2              2     value3               This is documented PHP feature   From PHP net  Cookies names can be set as array names and will be available to your PHP scripts as arrays but separate cookies are stored on the user s system

User · Answer

recently i ve created this code for my client  i m using array for cookie in this code  actually this code gets recently viewed pages by user using cookies  hope it helps you      function curPageURL        get url return  http        empty   SERVER  HTTPS     amp  amp    SERVER  HTTPS        off       SERVER  SERVER PORT      443      s                    SERVER  SERVER NAME         SERVER  SERVER PORT      80           SERVER  SERVER PORT         SERVER  REQUEST URI        currentPage   curPageURL       call function  counter     COOKIE   counter       set counter variable  if    COOKIE   PAGES        if  Pages cookie  default   1     set default value to 1 setcookie   counter   default time   7200      set counter cookie setcookie   PAGES  default    currentPage  time   3600      set cookie     else     if    Pages cookie   default    counter 1     set default value to  1 setcookie   counter   default time   7200      set counter cookie     if  in array  currentPage     COOKIE   PAGES         if same url found   else     if new url found setcookie   PAGES  default    currentPage  time   3600      set cookie       if   COOKIE   PAGES     foreach    COOKIE   PAGES   as  value       echo   lt a href    value   gt   value  lt  a gt

User · Answer

Cookies are basically text  so you can store an array by encoding it as a JSON string  see json encode   Be aware that there is a limit on the length of the string you can store though

[php] Arrays in cookies PHP

Examples related to php

Examples related to arrays

Examples related to security

Examples related to cookies