Yes and while we're at it, serialization is unneccesary unless you're talking about objects. I store nested arrays of data in session variables all the time ind drupal code.
-----Original Message----- From: support-bounces@drupal.org [mailto:support-bounces@drupal.org] On Behalf Of Jonathan Hedstrom Sent: Wednesday, October 22, 2008 1:55 PM To: support@drupal.org Subject: Re: [support] Passing Variable between Forms
Earnie Boyd wrote:
This suggestion is a misuse of the variable_set/get methods as a resolution to the OP's question. Store the serialized data in a $_SESSION['mymod'] data and then set the default values of your new form using the unserialized data from $_SESSION['mymod']. However, if
you have sensitive data you'll need to encrypt and decrypt it as well
as serialize the data.
What would encrypting the sensitive data in the $_SESSION variable accomplish, since the final resting place (the Drupal node/user/variable tables etc), aren't encrypted?
Cheers,
Jonathan