Page 1 of 1

passing session data to remote frame resource

Posted: Tue Nov 01, 2005 1:33 pm
by james_k
The scenario is an extranet that uses a single sign-on to log the user into various web applications. The landing page on login is a 3-frame page and starts a session with some basic variables.

I'm just curious how remote-resources in a frame are handled in the session -- are they a part of the active session or do they generate their own?

Reason being I'd like to pass session variables to the frame and the remote script. Is that even possible?

I've been digging through these forums and will be going through some of the resources in the sticky, but if anyone can offer up some ideas or discussion, I'd really appreciate it.

Cheers,

-J

Posted: Tue Nov 01, 2005 1:37 pm
by feyd
the session data would have to be passed via URL or a form submission if the "remote" page is off-domain.. Technically, it is possible to share the session data between different domains as long as they have access to a central repository of the information, but it can be fairly painful, to say the least..

Posted: Tue Nov 01, 2005 1:56 pm
by james_k
via URL is scary to me... was hoping I could avoid doing POST too, but I guess that's the quick way of doing it.

Still not entirely safe though -- anyway

Thanks.

When I get the chance I'll be redesigning this thing to use a central LDAP server. Any reccommended reading for using LDAP with PHP?

All the best,

-J

Posted: Tue Nov 01, 2005 2:05 pm
by feyd
not specifically.. but the LDAP section in the PHP manual has quite a bit of information: http://php.net/ldap