in reply to Cookie and Session

And these lines do not work:

Please post a minimal (but complete) program which demonstrates the problem. 10-15 lines of code should be sufficient.

Improve your skills with Modern Perl: the free book.

Replies are listed 'Best First'.
Re^2: Cookie and Session
by devarishi (Initiate) on Nov 03, 2011 at 17:50 UTC

    Here is the first page that is called when the "Submit" button is clicked and "User ID and Password" is passed (via the POST method):

    
use CGI qw/:standard/;
use CGI::Cookie;

print "<html><head>\n\r<title>Validating</title></head><body>";

if ($ENV{'REQUEST_METHOD'} eq "POST") {
    read(STDIN, $request,$ENV{'CONTENT_LENGTH'}) or die "Could not get
+ query\n";

}

@parameters = split(/&/,$request);

foreach $p (@parameters){
    $p =~ s/\+/ /g;
    ($para,$value) = split(/=/,$p);
    $para =~ s/%([0-9A-F][0-9A-F])/pack("c",hex($1))/ge;
    $value =~ s/%([0-9A-F][0-9A-F])/pack("c",hex($1))/ge;
    $PAIRS{$para} = $value;
}

if($PAIRS{"login_id"} eq("admin") && $PAIRS{"login_password"} eq("go")
+){
    $login_cookie        = new CGI::Cookie(-name=>'loginID',-value=>'a
+dmin');
    $password_cookie    = new CGI::Cookie(-name=>'loginPassword',-valu
+e=>'go');
    header(-cookie=>[$login_cookie,$password_cookie]);
    print "<script type='text/javascript'>
    <!--
        window.location = 'work_with_cookies.pl';
    //-->
    </script>";
}
else{
    print "<script type='text/javascript'>
    <!--
        window.location = 'admin_login.html';
    //-->
    </script>";
}

print "</body></html>";

    [download]

    And here is the Perl program that is called after creating the cookies:

    work_with_cookies.pl

    
use CGI qw/:standard/;
use CGI::Cookie;
print ("<html><head>\n\r</head><body>");
%cookies = CGI::Cookie->fetch;
print $cookies{"loginID"};
print $cookies{"loginPassword"};
print "<hr />";
print ("</body></html>");

    [download]

    But I am getting nothing on the above page except the Horizontal Line. On the previous page if I use "print" before the "header" then I get the credentials as well as the other stuffs mixed with them as posted in the original post above.

    I repeat my question/problem: I am not able to set cookies and fetch/use them from/on the some other page that requires to validate the credentials before displaying its contents.

[reply]
[d/l]
[select]
      print "<html><head>\n\r<title>Validating</title></head><body>";

      Cookies must go in the HTTP header. If you print HTML first, you've given up your chance to print any HTTP headers. Print the header with any cookies first.

      if ($ENV{'REQUEST_METHOD'} eq "POST") {
    read(STDIN, $request,$ENV{'CONTENT_LENGTH'}) or die "Could not get
+ query\n";

}

@parameters = split(/&/,$request);

foreach $p (@parameters){
    $p =~ s/\+/ /g;
    ($para,$value) = split(/=/,$p);
    $para =~ s/%([0-9A-F][0-9A-F])/pack("c",hex($1))/ge;
    $value =~ s/%([0-9A-F][0-9A-F])/pack("c",hex($1))/ge;
    $PAIRS{$para} = $value;
}

      [download]

      Get rid of this code; it's buggy (I count at least three bugs and one denial of service attack) and you're already using CGI. Use its param() functions and save yourself the headache.

      Improve your skills with Modern Perl: the free book.

[reply]
[d/l]
[select]

        I have removed that line and now I am printing nothing before the "header": 

        
use CGI qw/:standard/;
use CGI::Cookie;

if ($ENV{'REQUEST_METHOD'} eq "POST") {
    read(STDIN, $request,$ENV{'CONTENT_LENGTH'});

}

@parameters = split(/&/,$request);

foreach $p (@parameters){
    $p =~ s/\+/ /g;
    ($para,$value) = split(/=/,$p);
    $para =~ s/%([0-9A-F][0-9A-F])/pack("c",hex($1))/ge;
    $value =~ s/%([0-9A-F][0-9A-F])/pack("c",hex($1))/ge;
    $PAIRS{$para} = $value;
}

if($PAIRS{"login_id"} eq("admin") && $PAIRS{"login_password"} eq("go")
+){
    $login_cookie        = new CGI::Cookie(-name=>'loginID',-value=>'a
+dmin');
    $password_cookie    = new CGI::Cookie(-name=>'loginPassword',-valu
+e=>'go');
    print header(-cookie=>[$login_cookie,$password_cookie]);
    print "<script type='text/javascript'>
        window.location = 'work_with_cookies.pl';
    </script>";
}
else{
    print "<script type='text/javascript'>
    <!--
        window.location = 'admin_login.html';
    //-->
    </script>";
}

        [download]

        Still it does not work. The "Set cookie" lines are displaying and the page is not being redirected as well. If I remove the "print" operator from the "header" statement then the page gets redirected but nothing appears thereon. I mean the cookies are not retrieved thereon.

[reply]
[d/l]

In Section Seekers of Perl Wisdom