Why session cookies is not an option:
Users will enter my PHP page and I want them to be able to reload the page as many times as they want and be given a new session nor do I want to lose users or receive complaints about cookies being enabled. If I were to use session cookies, the cookie wouldn’t expire upon page reload and give the user a new session.
The user enters my page via a GET request: filloutform.php and is given a unique session
The user submits the form via a POST request: filloutform.php?step=2 the session from the first page is passed along
The user submits that form via a POST request: filloutform.php?step=3 the session is passed along from the 2nd page that was passed from the first page which was generated when the user first entered the entry page.
etc.
Upon the entry of the system filloutform.php, I want PHP to generate a unique string for the user e.g. b6b6991099b90dfe8c76b474a5790842 store it in a variable $sessionid, log it into the database and use it twice within my form:
[code]
<form method=”post” action=”[color=blue]filloutform.php?step=2[/color]”>
…
<img src=”imagegenerator.php?sessionid=[color=blue]<? echo $sessionid; ?>[/color]” alt=”Confirmation Image”>
<input type=”text” name=”confirmationcode” value=””>
<input type=”hidden” name=”sessionid” value=”[color=blue]<? echo $sessionid; ?>[/color]”>
…
</form>
How would I generate a unique string for each user that enters the entry of the system and each time they reload the entry page it would generate a new string?