Hello all.
The problem:
I have started a session. Now I would need to set an expiry time (24 hours) on the cookie it creates (if it creates it).
How do I achieve this?
Thanks to all, who anwsers.
Psyho
0
Newbie Poster
Recommended Answers
Jump to Postif(!isset$_SESSION['expiry']){ $_SESSION['expiry']=time()+$time_to_expire; }else{ //if time have expired if( time()>$_SESSION['expiry']){ //echo message and redirect to the page //unset variable } }*untested*
Jump to PostYour answer has been answered here http://stackoverflow.com/a/1270960/1076048
All 7 Replies
Stefano Mtangoo
455
Senior Poster
if(!isset$_SESSION['expiry']){
$_SESSION['expiry']=time()+$time_to_expire;
}else{
//if time have expired
if( time()>$_SESSION['expiry']){
//echo message and redirect to the page
//unset variable
}
}*untested*
qazplm114477
14
Junior Poster
Psyho
0
Newbie Poster
if(!isset$_SESSION['expiry']){ $_SESSION['expiry']=time()+$time_to_expire; }else{ //if time have expired if( time()>$_SESSION['expiry']){ //echo message and redirect to the page //unset variable } }*untested*
Thank you it works.
But I would like to ask: I have read somewhere (I can't remember where anymore), that when session starts, it may set a cookie named SSID on client-side.
Is that true, and if it is , can it be used for such a thing?
Stefano Mtangoo
455
Senior Poster
Thank you it works.
But I would like to ask: I have read somewhere (I can't remember where anymore), that when session starts, it may set a cookie named SSID on client-side.
Is that true, and if it is , can it be used for such a thing?
I would advice you to stay away with internals of PHP.
That being said, I will quote Vikram's explanation found here:
Sessions work by associating every session with a session ID (a unique
identifier for the session) that is automatically generated by PHP. This session ID is
stored in two places: on the client using a temporary cookie, and on the server in a
flat file or a database. By using the session ID to put a name to every request received,
a developer can identify which client initiated which request, and track and maintain
client-specific information in session variables (variable-value pairs which remain alive
for the duration of the session and which can store textual or numeric information).
qazplm114477
14
Junior Poster
I would agree with evstevemd, changing the way session works on php could create big security holes on the server. An easy way to manually manage sessions is to store the start time in a session variable and if it exceeds 24 hours, just call session_destroy.
Psyho
0
Newbie Poster
Thank you everyone, you all were a great help to me.
With this i think it's case closed.
Stefano Mtangoo
455
Senior Poster
Thank you everyone, you all were a great help to me.
With this i think it's case closed.
Enjoy! :)
Be a part of the DaniWeb community
We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.