problems with serialize and unserialize

Albino · 11-13-2007, 08:36 AM

hey,

ok, I am saving 2 values in my cookie, like so:

Code:

$cookie = @serialize(array($u, $c));
setcookie("siteLogin", $cookie, time() + 36000, "/");

$u is username, $c is a cookie value (this is part of a remember script for logins).

now, when I come to extract it, I have this:

Code:

if (isset($_COOKIE['siteLogin'])){

    echo $_COOKIE['siteLogin']."<br />";
    echo unserialize($cookie)."<br />";
    list($u, $c) = @unserialize($cookie);
    echo "username: ".$u."  cookie: ".$c;

}

the echo is just for debugging, ive checked if the cookie contains a value, it does (and looks serialized). I can;t echo it unserialized or listed, am I doing something wrong?
????: NamePros.com http://www.namepros.com/programming/395341-resolved-problems-with-serialize-and-unserialize.html

here is a test url:

http://munkydesigns.co.uk/ScriptsNew/login.php

u: username
p: password

make sure you check remember me lol

thanks in advance

jido · 11-13-2007, 09:32 AM

First thing, look at unserialize error messages:

Code:

    list($u, $c) = unserialize($cookie);

Albino · 11-13-2007, 11:16 AM

there are no error messages

jido · 11-13-2007, 11:27 AM

Can you paste the serialized cookie here?

neroux · 11-13-2007, 02:00 PM

You are referring to a variable $cookie which doesnt seem to be set unserialize($_COOKIE['siteLogin']); should do it.

Albino · 11-14-2007, 10:38 AM

Jido, here is the serialized cookie: a:2:{i:0;s:8:\"username\";i:1;s:32:\"29ef5859fbfe3 4e0918bdec7ec00a988\";}

Neroux, good spot haha. thats because I copied and pasted the snippet from the actual function, with $cookie as a parameter. However, even as :

PHP Code:

  echo $_COOKIE['siteLogin']."<br />";

????: NamePros.com http://www.namepros.com/showthread.php?t=395341
echo unserialize($_COOKIE['siteLogin'])."<br />";

list($u, $c) = @unserialize($_COOKIE['siteLogin']);

echo "username: ".$u."  cookie: ".$c;

I get no outcome

neroux · 11-14-2007, 01:37 PM

I know you said the cookie contains the value, but can you check it once again? The reason is, in your example I am not even getting the cookie but only the session cookie.

Daniel · 11-14-2007, 02:14 PM

Try this, it's ugly and someone will probably yell at me. But it seems to work.

PHP Code:

  $u = "hello";

$c = "world";

 
$cookie = urlencode(serialize(array($u, $c)));

 
if(!setcookie("siteLogin", $cookie, time() + 20000)) die("Hmm");

 
if(isset($_COOKIE['siteLogin'])) {

        

    $line = urldecode($_COOKIE['siteLogin']);

    

    if (get_magic_quotes_gpc()) $line = stripslashes($line);

    

    list($a, $u) = unserialize($line);

    echo "username: " . $a . "<br />pass: " . $u;

????: NamePros.com http://www.namepros.com/showthread.php?t=395341
}

Remember: Cookie names can not contain any of the following '=,; \t\r\n\013\014

Albino · 11-18-2007, 04:43 PM

cheers Danltn, worked a treat

11-13-2007, 08:36 AM	THREAD STARTER #1 (permalink)
Albino Munky Designs Join Date: May 2005 Posts: 996	problems with serialize and unserialize hey, ok, I am saving 2 values in my cookie, like so: Code: $cookie = @serialize(array($u, $c)); setcookie("siteLogin", $cookie, time() + 36000, "/"); $u is username, $c is a cookie value (this is part of a remember script for logins). now, when I come to extract it, I have this: Code: if (isset($_COOKIE['siteLogin'])){ echo $_COOKIE['siteLogin']."<br />"; echo unserialize($cookie)."<br />"; list($u, $c) = @unserialize($cookie); echo "username: ".$u." cookie: ".$c; } the echo is just for debugging, ive checked if the cookie contains a value, it does (and looks serialized). I can;t echo it unserialized or listed, am I doing something wrong? ????: NamePros.com http://www.namepros.com/programming/395341-resolved-problems-with-serialize-and-unserialize.html here is a test url: http://munkydesigns.co.uk/ScriptsNew/login.php u: username p: password make sure you check remember me lol thanks in advance __________________ Toddish.co.uk - Portfolio/Blog Powcomics.com - Webcomic Hosting/Directory Erant.co.uk - vent your rage!

11-13-2007, 09:32 AM	#2 (permalink)
jido Senior Member Join Date: Aug 2007 Posts: 2,172	First thing, look at unserialize error messages: Code: list($u, $c) = unserialize($cookie); __________________ ______________________________________ Help with crosswords http://lettercombination.com Pitfalls of Java http://javasyntax.com _______________ f o r . s a l e ______________

11-13-2007, 11:16 AM	THREAD STARTER #3 (permalink)
Albino Munky Designs Join Date: May 2005 Posts: 996	there are no error messages __________________ Toddish.co.uk - Portfolio/Blog Powcomics.com - Webcomic Hosting/Directory Erant.co.uk - vent your rage!

11-13-2007, 11:27 AM	#4 (permalink)
jido Senior Member Join Date: Aug 2007 Posts: 2,172	Can you paste the serialized cookie here? __________________ ______________________________________ Help with crosswords http://lettercombination.com Pitfalls of Java http://javasyntax.com _______________ f o r . s a l e ______________

11-13-2007, 02:00 PM	#5 (permalink)
neroux NamePros Regular Join Date: Oct 2006 Posts: 963	You are referring to a variable $cookie which doesnt seem to be set unserialize($_COOKIE['siteLogin']); should do it. __________________ Paris loves CityPics -- Do not let others be treated this way!

11-14-2007, 10:38 AM	THREAD STARTER #6 (permalink)
Albino Munky Designs Join Date: May 2005 Posts: 996	Jido, here is the serialized cookie: a:2:{i:0;s:8:\"username\";i:1;s:32:\"29ef5859fbfe3 4e0918bdec7ec00a988\";} Neroux, good spot haha. thats because I copied and pasted the snippet from the actual function, with $cookie as a parameter. However, even as : PHP Code: `echo $_COOKIE['siteLogin']."<br />"; ????: NamePros.com http://www.namepros.com/showthread.php?t=395341 echo unserialize($_COOKIE['siteLogin'])."<br />"; list($u, $c) = @unserialize($_COOKIE['siteLogin']); echo "username: ".$u." cookie: ".$c;` I get no outcome __________________ Toddish.co.uk - Portfolio/Blog Powcomics.com - Webcomic Hosting/Directory Erant.co.uk - vent your rage!

11-14-2007, 01:37 PM	#7 (permalink)
neroux NamePros Regular Join Date: Oct 2006 Posts: 963	I know you said the cookie contains the value, but can you check it once again? The reason is, in your example I am not even getting the cookie but only the session cookie. __________________ Paris loves CityPics -- Do not let others be treated this way!

11-14-2007, 02:14 PM	#8 (permalink)
Daniel Danltn.com Join Date: May 2007 Location: Danltn.com / Nottingham, UK Posts: 1,201	Try this, it's ugly and someone will probably yell at me. But it seems to work. PHP Code: $u = "hello"; $c = "world"; $cookie = urlencode(serialize(array($u, $c))); if(!setcookie("siteLogin", $cookie, time() + 20000)) die("Hmm"); if(isset($_COOKIE['siteLogin'])) { $line = urldecode($_COOKIE['siteLogin']); if (get_magic_quotes_gpc()) $line = stripslashes($line); list($a, $u) = unserialize($line); echo "username: " . $a . "<br />pass: " . $u; ????: NamePros.com http://www.namepros.com/showthread.php?t=395341 } Remember: Cookie names can not contain any of the following '=,; \t\r\n\013\014 __________________ :lala: *VERY CHEAP ADVANCED* BULK DOMAIN-STATISTICS LOOKUP** :kickass: Danltn's Blog - Daniel Neville's Site Spoof your links! Submit your blog NOW! Putting bloggers on the map! Last edited by Danltn; 11-14-2007 at 02:18 PM.

11-18-2007, 04:43 PM	THREAD STARTER #9 (permalink)
Albino Munky Designs Join Date: May 2005 Posts: 996	cheers Danltn, worked a treat __________________ Toddish.co.uk - Portfolio/Blog Powcomics.com - Webcomic Hosting/Directory Erant.co.uk - vent your rage!

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)