Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:95069
Return-Path: <lester@lsces.co.uk>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 10327 invoked from network); 12 Aug 2016 09:12:37 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 12 Aug 2016 09:12:37 -0000
Authentication-Results: pb1.pair.com header.from=lester@lsces.co.uk; sender-id=unknown
Authentication-Results: pb1.pair.com smtp.mail=lester@lsces.co.uk; spf=permerror; sender-id=unknown
Received-SPF: error (pb1.pair.com: domain lsces.co.uk from 217.147.176.230 cause and error)
X-PHP-List-Original-Sender: lester@lsces.co.uk
X-Host-Fingerprint: 217.147.176.230 mail4-3.serversure.net Linux 2.6
Received: from [217.147.176.230] ([217.147.176.230:58771] helo=mail4.serversure.net)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 9A/38-56950-3039DA75 for <internals@lists.php.net>; Fri, 12 Aug 2016 05:12:36 -0400
Received: (qmail 24186 invoked by uid 89); 12 Aug 2016 09:12:32 -0000
Received: by simscan 1.3.1 ppid: 24180, pid: 24183, t: 0.0689s
         scanners: attach: 1.3.1 clamav: 0.96/m:52/d:10677
Received: from unknown (HELO ?10.0.0.7?) (lester@rainbowdigitalmedia.org.uk@81.138.11.136)
  by mail4.serversure.net with ESMTPA; 12 Aug 2016 09:12:32 -0000
To: Yasuo Ohgaki <yohgaki@ohgaki.net>
References: <CAGa2bXaZhfXbU6N0-JGVPzkkxRdkcjEhkHP+YrQNH=XFX714-Q@mail.gmail.com>
 <CAPwsocFAMofROQE-OBfNiR4yrKKSss_owu0svu+Db66DmRbShw@mail.gmail.com>
 <CAGa2bXaxRA91q+ev-X3okKpNC=s3XEwC9deUYikTaUQPfOE-JQ@mail.gmail.com>
 <CAGa2bXYZk5S7H_UPe6mkuNCp-WMygqXVzVLZoLtzc_k+3mgoAw@mail.gmail.com>
 <CAGa2bXZv+U7SFgJAt-qKxqRtvUiozZfayJrTL_5gVkeGNUc6tQ@mail.gmail.com>
 <5b7b5d2c-e865-9ec9-f549-3ab693af39e6@lsces.co.uk>
 <CAGa2bXZ5KJtqobwJqSmeANQv+A-dZVSmUYe3sSnEAgHd9Sp1CA@mail.gmail.com>
Cc: "internals@lists.php.net" <internals@lists.php.net>
Message-ID: <9666aa9c-810c-867d-62ba-6625ca4daa35@lsces.co.uk>
Date: Fri, 12 Aug 2016 10:12:31 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101
 Thunderbird/45.2
MIME-Version: 1.0
In-Reply-To: <CAGa2bXZ5KJtqobwJqSmeANQv+A-dZVSmUYe3sSnEAgHd9Sp1CA@mail.gmail.com>
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 7bit
Subject: Re: [PHP-DEV] [RFC][VOTE] Add session_create_id() function
From: lester@lsces.co.uk (Lester Caine)

On 12/08/16 09:23, Yasuo Ohgaki wrote:
> I don't think it's framework job to do.

This was a little 'tongue in cheek' ... my main thought was simply that
you need a variable 'session_id' and other processes may benefit from a
similarly constrained variable, so an intelligent variable could be
envisaged that has the code for creating that value. In any case if the
session code creates the variable, you want to ensure that nothing else
modifies it, so $session_id variable should be read_only and blocked
from accidentally escaping it, so even though it is generated within the
session code it's result needs to follow some rules.

-- 
Lester Caine - G8HFL
-----------------------------
Contact - http://lsces.co.uk/wiki/?page=contact
L.S.Caine Electronic Services - http://lsces.co.uk
EnquirySolve - http://enquirysolve.com/
Model Engineers Digital Workshop - http://medw.co.uk
Rainbow Digital Media - http://rainbowdigitalmedia.co.uk