Credit Card information in sessions
Moderator: General Moderators
- kendall
- Forum Regular
- Posts: 852
- Joined: Tue Jul 30, 2002 10:21 am
- Location: Trinidad, West Indies
- Contact:
Credit Card information in sessions
Is It a good idea to store CC information in a $_SESSION provided that the environment is in SSL? I am in a situation where i may have to carry information accross pages and i was trying to find a way to carry across payment information. However depending on the results i will need to do some "redirecting"
Re: Credit Card information in sessions
It should be ok, just make sure you use sessions not cookies, and encrypt it using the mcrypt extension (php.net/mcrypt). Use mcrypt_encrypt and store that in the session, and if you need to pull it back out use mcrypt_decrypt. There are some good examples on how to do this in the link.
Re: Credit Card information in sessions
Is it dedicated server?