Location: Qobo Ltd
Month: July 2015
Spaghetti
PHP session encoding
I’ve been coding PHP for a few years now, but still once in a while I come across something that I had no idea about. Â In a recent project I was working on the single sign on (SSO) integration with the customer’s internal systems. Â After doing the initial proof of concept code snippet, I got the logged in user results from a shared caching server. Â The string looked something like this:
UserAuth|a:2:{s:8:"username";s:6:"leonid";s:4:"role";s:5:"admin";}UserSettings|a:2:{s:8:"language";s:2:"en";s:8:"timezone";s:5:"GMT+2";}
This was very similar to the results of PHP’s serialize() function, but not quite.  I’ve asked around, but nobody could point me in the right direction, so I went the regular expression way to parse this (do I have two problems now?).
After a code review and discussion with the developers on the customer side, I’ve learned that this is apparently a result of PHP’s session_encode() function, which I haven’t seen in the wild until that day. Â Excellent! Now I should be able to use session_decode() to parse that, right? Â Well, almost. Â According to PHP Sadness #29:
The only way to decode php-session-format serialization (different from normal php serialize) is by calling php session_decode, which can only be called if there is an active session. If there is no active session, you can’t decode session data without starting one first.
So, don’t forget to session_start() before you try to decode. Â Which makes it a bit tricky if you already have a session that you don’t want to ruin. Â You might want to look into session_name() to work around it. Â Gladly, I didn’t have to resolve to that as another customer-specific work around was implemented.
SQL Style Guide
SQL Style Guide – much needed!
NISE Nexcom Series
NISE Nexcom Series – a good selection of embedded servers and mini-PCs for home and small office needs.  These things don’t require a lot of power or a dedicated cooling system, and have native support for Linux.