From: Stanislav Malyshev Date: Wed, 16 May 2007 01:18:14 +0000 (+0000) Subject: do not send cookie when session is passed in URL, same as it happens with GET/POST X-Git-Tag: php-5.2.3RC1~86 X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=69650d0ebf188eecec26fcd82729cd042b4ca7f9;p=php do not send cookie when session is passed in URL, same as it happens with GET/POST --- diff --git a/ext/session/session.c b/ext/session/session.c index cdb23ff2ef..514817ed80 100644 --- a/ext/session/session.c +++ b/ext/session/session.c @@ -1283,8 +1283,11 @@ PHPAPI void php_session_start(TSRMLS_D) char *q; p += lensess + 1; - if ((q = strpbrk(p, "/?\\"))) + if ((q = strpbrk(p, "/?\\"))) { PS(id) = estrndup(p, q - p); + PS(send_cookie) = 0; + } + } /* check whether the current request was referred to by