[resolved] problems with serialize and unserialize

Albino · 11-13-2007, 07:36 AM

hey,

ok, I am saving 2 values in my cookie, like so:

Code:

$cookie = @serialize(array($u, $c));
setcookie("siteLogin", $cookie, time() + 36000, "/");

$u is username, $c is a cookie value (this is part of a remember script for logins).

now, when I come to extract it, I have this:

Code:

if (isset($_COOKIE['siteLogin'])){

    echo $_COOKIE['siteLogin']."<br />";
    echo unserialize($cookie)."<br />";
    list($u, $c) = @unserialize($cookie);
    echo "username: ".$u."  cookie: ".$c;

}

the echo is just for debugging, ive checked if the cookie contains a value, it does (and looks serialized). I can;t echo it unserialized or listed, am I doing something wrong?

here is a test url:

http://munkydesigns.co.uk/ScriptsNew/login.php

u: username
p: password

make sure you check remember me lol

thanks in advance

jido · 11-13-2007, 08:32 AM

First thing, look at unserialize error messages:

Code:

    list($u, $c) = unserialize($cookie);

Albino · 11-13-2007, 10:16 AM

there are no error messages

jido · 11-13-2007, 10:27 AM

Can you paste the serialized cookie here?

neroux · 11-13-2007, 01:00 PM

You are referring to a variable $cookie which doesnt seem to be set unserialize($_COOKIE['siteLogin']); should do it.

Albino · 11-14-2007, 09:38 AM

Jido, here is the serialized cookie: a:2:{i:0;s:8:\"username\";i:1;s:32:\"29ef5859fbfe3 4e0918bdec7ec00a988\";}

Neroux, good spot haha. thats because I copied and pasted the snippet from the actual function, with $cookie as a parameter. However, even as :

PHP Code:

  echo $_COOKIE['siteLogin']."<br />";

echo unserialize($_COOKIE['siteLogin'])."<br />";

list($u, $c) = @unserialize($_COOKIE['siteLogin']);

echo "username: ".$u."  cookie: ".$c;

I get no outcome

neroux · 11-14-2007, 12:37 PM

I know you said the cookie contains the value, but can you check it once again? The reason is, in your example I am not even getting the cookie but only the session cookie.

Daniel · 11-14-2007, 01:14 PM

Try this, it's ugly and someone will probably yell at me. But it seems to work.

PHP Code:

  $u = "hello";

$c = "world";

 
$cookie = urlencode(serialize(array($u, $c)));

 
if(!setcookie("siteLogin", $cookie, time() + 20000)) die("Hmm");

 
if(isset($_COOKIE['siteLogin'])) {

        

    $line = urldecode($_COOKIE['siteLogin']);

    

    if (get_magic_quotes_gpc()) $line = stripslashes($line);

    

    list($a, $u) = unserialize($line);

    echo "username: " . $a . "<br />pass: " . $u;

}

Remember: Cookie names can not contain any of the following '=,; \t\r\n\013\014

Albino · 11-18-2007, 03:43 PM

cheers Danltn, worked a treat

11-13-2007, 07:36 AM	#1 (permalink)
Albino Munky Designs Join Date: May 2005 Posts: 997 417.00 NP$ (Donate)	problems with serialize and unserialize hey, ok, I am saving 2 values in my cookie, like so: Code: $cookie = @serialize(array($u, $c)); setcookie("siteLogin", $cookie, time() + 36000, "/"); $u is username, $c is a cookie value (this is part of a remember script for logins). now, when I come to extract it, I have this: Code: if (isset($_COOKIE['siteLogin'])){ echo $_COOKIE['siteLogin']."<br />"; echo unserialize($cookie)."<br />"; list($u, $c) = @unserialize($cookie); echo "username: ".$u." cookie: ".$c; } the echo is just for debugging, ive checked if the cookie contains a value, it does (and looks serialized). I can;t echo it unserialized or listed, am I doing something wrong? here is a test url: http://munkydesigns.co.uk/ScriptsNew/login.php u: username p: password make sure you check remember me lol thanks in advance __________________ Munky Designs - Web Developers\|\| Erant - Vent Your Rage! \|\| Pow Comics - webcomic hosting + directory

11-13-2007, 08:32 AM	#2 (permalink)
jido Senior Member Join Date: Aug 2007 Posts: 2,167 457.00 NP$ (Donate)	First thing, look at unserialize error messages: Code: list($u, $c) = unserialize($cookie); __________________ ~~______________________________________~~ Time After Leisure & Events discussions eBay auction aqnu, pzpy, vqqr.com 16 llll.com start $.95 ~~_______________~~ f o r . s a l e ~~______________~~

11-13-2007, 10:16 AM	#3 (permalink)
Albino Munky Designs Join Date: May 2005 Posts: 997 417.00 NP$ (Donate)	there are no error messages __________________ Munky Designs - Web Developers\|\| Erant - Vent Your Rage! \|\| Pow Comics - webcomic hosting + directory

11-13-2007, 10:27 AM	#4 (permalink)
jido Senior Member Join Date: Aug 2007 Posts: 2,167 457.00 NP$ (Donate)	Can you paste the serialized cookie here? __________________ ~~______________________________________~~ Time After Leisure & Events discussions eBay auction aqnu, pzpy, vqqr.com 16 llll.com start $.95 ~~_______________~~ f o r . s a l e ~~______________~~

11-13-2007, 01:00 PM	#5 (permalink)
neroux NamePros Regular Join Date: Oct 2006 Posts: 918 40.00 NP$ (Donate)	You are referring to a variable $cookie which doesnt seem to be set unserialize($_COOKIE['siteLogin']); should do it. __________________ Paris loves CityPics muov.com • qeww.com • sejz.com • viuo.com • vuav.com • wzeo.com • xeib.com • xueo.com -- Do not let others be treated this way!

11-14-2007, 09:38 AM	#6 (permalink)
Albino Munky Designs Join Date: May 2005 Posts: 997 417.00 NP$ (Donate)	Jido, here is the serialized cookie: a:2:{i:0;s:8:\"username\";i:1;s:32:\"29ef5859fbfe3 4e0918bdec7ec00a988\";} Neroux, good spot haha. thats because I copied and pasted the snippet from the actual function, with $cookie as a parameter. However, even as : PHP Code: `echo $_COOKIE['siteLogin']."<br />"; echo unserialize($_COOKIE['siteLogin'])."<br />"; list($u, $c) = @unserialize($_COOKIE['siteLogin']); echo "username: ".$u." cookie: ".$c;` I get no outcome __________________ Munky Designs - Web Developers\|\| Erant - Vent Your Rage! \|\| Pow Comics - webcomic hosting + directory

11-14-2007, 12:37 PM	#7 (permalink)
neroux NamePros Regular Join Date: Oct 2006 Posts: 918 40.00 NP$ (Donate)	I know you said the cookie contains the value, but can you check it once again? The reason is, in your example I am not even getting the cookie but only the session cookie. __________________ Paris loves CityPics muov.com • qeww.com • sejz.com • viuo.com • vuav.com • wzeo.com • xeib.com • xueo.com -- Do not let others be treated this way!

11-14-2007, 01:14 PM	#8 (permalink)
Daniel Danltn.com Join Date: May 2007 Location: Danltn.com / Nottingham, UK Posts: 1,201 13.51 NP$ (Donate)	Try this, it's ugly and someone will probably yell at me. But it seems to work. PHP Code: `$u = "hello"; $c = "world"; $cookie = urlencode(serialize(array($u, $c))); if(!setcookie("siteLogin", $cookie, time() + 20000)) die("Hmm"); if(isset($_COOKIE['siteLogin'])) { $line = urldecode($_COOKIE['siteLogin']); if (get_magic_quotes_gpc()) $line = stripslashes($line); list($a, $u) = unserialize($line); echo "username: " . $a . "<br />pass: " . $u; }` Remember: Cookie names can not contain any of the following '=,; \t\r\n\013\014 __________________ *VERY CHEAP ADVANCED* BULK DOMAIN-STATISTICS LOOKUP** Danltn's Blog - Daniel Neville's Site Spoof your links! Submit your blog NOW! Putting bloggers on the map! Last edited by Danltn; 11-14-2007 at 01:18 PM.

11-18-2007, 03:43 PM	#9 (permalink)
Albino Munky Designs Join Date: May 2005 Posts: 997 417.00 NP$ (Donate)	cheers Danltn, worked a treat __________________ Munky Designs - Web Developers\|\| Erant - Vent Your Rage! \|\| Pow Comics - webcomic hosting + directory

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)