On 15.04.2004 20:15 +0200, Olivier Mueller wrote:
On Thu, 2004-04-15 at 19:12 +0200, Marcel Tschopp wrote:
Php sessions work also without cookies and you can store them anywhere you want (see session_set_save_handler). This is definitely less work than custom system and also probably more efficient.
I agree. You also have to use session_set_save_handler when using a db... I agree also that it is less work, but using a db don't uses very much work...
Well, now to install and start using PMA, you just have to get the tar/zip file, unpack it and edit the config.inc.php file. If we use db-based sessions, it would require another step before being able to use phpmyadmin: not really user-friendly, don't you think? (Hint: setup script could do that :) .
Yes setup should create all that stuff - pma user, database and all needed tables.
But I think that PMA should still be able to work without a mandatory DB for config/sessions etc. (just like now: the DB is optional, if it's there it just brings more features).
Sessions handling could be let on php, what is sometimes considered to be less secure (you can quite easily steal session from another php script running on same server). But it should work.