0

我们都知道 Uploadify 存在会话问题。当我浏览帖子时,我找到了解决问题的方法,即我需要通过 ajax 传递会话。

但问题是,每当我转到包含上传内容的页面时,它通常会在刷新后破坏会话。我什至没有上传任何东西。'。

例如,我进入了一个包含uploadify 脚本的页面。并且没有做任何事情,我去了其他页面,它会自动重定向到登录页面* 这意味着会话被破坏

Uploadify 在我上传文件之前甚至在按下上传按钮之前是否会调用 ajax?

有没有办法解决这个问题?

这是我的 Ajax 代码:

$(function() {
$('#file_upload1').uploadify({
       'formData'     : {
         'PHPSESSID': '<?=session_id()?>',
         'timestamp' : '<?php echo $timestamp;?>',
         'token'     : '<?php echo md5('unique_salt' . $timestamp);?>'
        },
        'swf'      : 'uploadify.swf',
        'uploader' : 'uploadify1.php?id=<? echo $id; ?>&state=<? echo strtolower($state); ?>'

         });
});

这是我的顶级 PHP 代码:

session_id($_POST['PHPSESSID']);

include "func.php";
sec_session_start();

sec_session_start();是一个函数。所以,sec_session_start();代码:

function sec_session_start() {
        $session_name = 'sec_session_id'; // Set a custom session name
        $secure = false; // Set to true if using https.
        $httponly = true; // This stops javascript being able to access the session id. 

        ini_set('session.use_only_cookies', 1); // Forces sessions to only use cookies. 
        session_set_cookie_params(86400);
        $cookieParams = session_get_cookie_params(); // Gets current cookies params.
        session_set_cookie_params($cookieParams["lifetime"], $cookieParams["path"], $cookieParams["domain"], $secure, $httponly); 
        session_name($session_name); // Sets the session name to the one set above.
        session_start(); // Start the php session
        session_regenerate_id(true); // regenerated the session, delete the old one.     
}
4

1 回答 1

0

您是否尝试过用PHPSESSID替换sec_session_id

$(function() {
$('#file_upload1').uploadify({
       'formData'     : {
         '<?=session_name()?>': '<?=session_id()?>',
         'timestamp' : '<?php echo $timestamp;?>',
         'token'     : '<?php echo md5('unique_salt' . $timestamp);?>'
        },
        'swf'      : 'uploadify.swf',
        'uploader' : 'uploadify1.php?id=<? echo $id; ?>&state=<? echo strtolower($state); ?>'

         });
});

在您的 PHP 之上:session_id($_POST['sec_session_id']);

另外,session_name($session_name)应该在之前执行session_set_cookie_params

function sec_session_start() {
        $session_name = 'sec_session_id'; // Set a custom session name
        session_name($session_name); // Sets the session name to the one set above.
        $secure = false; // Set to true if using https.
        $httponly = true; // This stops javascript being able to access the session id. 

        ini_set('session.use_only_cookies', 1); // Forces sessions to only use cookies. 
        session_set_cookie_params(86400);
        $cookieParams = session_get_cookie_params(); // Gets current cookies params.
        session_set_cookie_params($cookieParams["lifetime"], $cookieParams["path"], $cookieParams["domain"], $secure, $httponly); 
        session_start(); // Start the php session
        session_regenerate_id(true); // regenerated the session, delete the old one.     
}
于 2013-10-12T05:26:58.960 回答