SID Redirect
|
This addon will remove the initial session ID (aka. SID) from the query string if cookies are enabled and working. The main benefit of doing this is to minimise the chances that people will give out URLs to your web site containing a session ID, which if followed may cause customers to see each others data registered on your web site. In other words, this mod is mostly about increasing security by avoiding a trivial but potentially dangerous situation. The session ID is normally displayed in the query string only on the first hit of a new session, but with this mod it will never be displayed in the users browser as long as cookies are enabled and working. Without cookies enabled the session ID must always (not just on the initial hit) be present in the query string, and this mod can not do anything about that. For the purpose of redirecting to self (the requested page), this mod looks for the presence of a server variable and if a valid server variable is not found it will simply skip redirection. It is therefore believed that this mod should be compatible with any server environment, although it will not do anything if none of the common server variables are found (REQUEST_URI, HTTP_X_REWRITE_URL, PHP_SELF, SCRIPT_NAME). For feedback, suggestions, bug reports and other, go to http://www.zen-cart.com/forum/showthread.php?t=64365 |
Zen Cart® Versions
Original Author
DownloadsVersion History
| SID Redirect - Version: 1.0 | |||||||||||||
|
|||||||||||||
Date Added
File Size
Encapsulated?
