Comments on: Adobe Flex Upload +[PHP] Session + Firefox = Failure !

By: ralph

ralph — Tue, 10 Feb 2009 08:49:18 +0000

i also have this problem with my flex uploader. i noticed that if you open upload.php file on browser it reads the session but with flex it wont..

By: iongion

iongion — Sun, 16 Nov 2008 11:29:09 +0000

Hi,

“It *is* possible to pass the php session information (print(“?”.session_name().’=’.session_id());) to the upload script but that’s not a viable option due to security concerns. ”

Why is that so unsecure ? Do you think cookies are safer in this regard ?

Basically your server takes input from REQUEST composed of GET/POST/COOKIE … no matter where you put the session_id, it still must be sent from a public part so i still wonder, why does it seem unsecure, maybe i am missing something.

By: Bryn Jones

Bryn Jones — Tue, 16 Sep 2008 16:47:03 +0000

Hi Joshua,

I’m faced with the same issue as you – would you mind sharing your hack to resolve this issue?

Many thanks,

Bryn.