PHP (setcookie) vs header (header )

Question

PHP (setcookie) vs header (header )

Asked 10 years, 3 months ago

Viewed 888 times

5

I see some frameworks, CMS and the like, writing cookies directly in PHP with setcookie and others stock to send us headers at the end of the run. I wanted to know how to create a pattern for the creation of cookies.

PHP

The setcookie() function sets a cookie to be sent along with the rest of the HTTP headers

We should create by sending by header?

header( "Set-Cookie: {$name}={$value};" )

Or leave it to PHP?

setcookie( $name , $value )

I recommend using setcookie() as it is an appropriate function to do this type of action. Header() is also good, but we recommend using setcookie()

– Alisson Acioli

2014/07/30 at 07:46
1

Another thing (that by now you should know) is that with header would have to use urlencode or rawurlencode. The following code is available on Github: https://github.com/php/php-src/blob/71c19800258ee3a9548af9a5e64ab0a62d1b1d8e/ext/standard/head.c#L80

– Guilherme Nascimento

2016/02/21 at 18:54
@Guilhermenascimento, I didn’t know that. He would have to use domain?

– Papa Charlie

2016/02/22 at 00:44
1

@Papacharlie then by what I analyzed from php source code it is necessary only name and value to be encoded, others not.

– Guilherme Nascimento

2016/02/23 at 01:05

1 answer

Browser other questions tagged php cookies http-headers

You are not signed in. Login or sign up in order to post.

by gmsantos • **17,221** points · Answer 1 · 2014-07-30T10:12:38+00:00

Both functions come to the same result.

But what differentiates the setcookie() is its ease for creating more complex cookies, with expiration date, domain of the application that the cookie will be used (www.algumacoisa.com.br), among others.

See all parameters the function accepts:

setcookie ( string $name [, string $value [, int $expire = 0 [, string $path [, string $domain [, bool $secure = false [, bool $httponly = false ]]]]]] )