PHP
downloads | documentation | faq | getting help | mailing lists | licenses | wiki | reporting bugs | php.net sites | links | conferences | my php.net

search for in the

소개> <msession_unlock
Last updated: Fri, 30 Jan 2009

view this page in

세션 다루기



소개> <msession_unlock
Last updated: Fri, 30 Jan 2009
 
add a note add a note User Contributed Notes
세션
Some Guy
16-Jan-2009 02:26
Just some notes - it seems that php does the session writing after the script exits.
For example, if you set a bunch of session variables and then run session_regenerate_id() - the session variables are never written to the old session. The new session id is generated when you ask it to be generated, but the session exists only in memory until after the script exits - when the session is written and any and all session variables are written to it.

This caused me some confusion, as I'm running sessions in an sql database rather than flat file, trying to do any manipulation of the session database directly in a script where you have run session_regenerate_id() will fail for the new session ID because the insert hasn't been done yet, and setting any session variables will only be written to the new session, even if set before you regenerate the session ID.

Also - if using a database for sessions, make sure to use mysql_real_escape_string() before saving any session variables.
Anonymous
06-Dec-2008 07:07
Variations from Http://, Https:// and http://www. will throw off session data.
master dot twinkle at virgin dot net
08-Sep-2008 09:32
If you have links from your website to other domains even if they open in new windows, session data will be lost.  I am using a session variable to store the number of hits and avoid the problem by opening links in the top location - this will of course give you the bonus of an extra hit when the visitor returns!
SebastianJu
21-Aug-2008 11:41
Cant believe this problem isnt described herein. I wondered why my session-variables lost their values when going from first site to second site. Both had a session_start();.

A session is working only on one domain. Subdomains dont use the Session of the maindomain. That means if someone comes to your site at yourdomain.com and the session is started there and then clicks a link where he is lead to www.yourdomain.com then the old session isnt working there anymore. Because www. is a subdomain.

In the practice that will mean a lot of lost sessions only because webmasters dont know this behaviour. I have never read a word about this in manuals or somewhere...

The solution is to put this code before the first session_start();

ini_set("session.cookie_domain",substr($_SERVER[HTTP_HOST],3));

Now it works. At the second place of parameters has to come in ".yourdomain.com" (with a dot before). With that the subdomains will use the same session like the maindomain. In this example domainname taken from Server-variable.

Greetings!
Sebastian
zareef at zareef dot net
11-Aug-2008 02:54
Persistence of session data in included file also has one more aspects if you are including a file using/over the http connection.
Session will not be available without refresh (it's a separate thread even if you are on the same domain/server), which is again a correct behavior, but if you are including a file from local file system then it should have session data if you are setting and accessing the $_SESSION variable even before page refresh because it is available globally.

<?php
session_start();
$_SESSION['example']="yes";

Include("otherfile");

?>

Session variable will be available in included file.

<?php
session_start();
$_SESSION['example']="yes";

Include("http://domain.com/otherfile.php");

?>

Session will NOT be available in other file.
BUt if both files are on same server then after refresh values will be available.
Madster
28-Jul-2008 10:45
When you include a php file in your current script it's included, not processed separately, thus it's still within the same page and the current page hasn't finished processing.
Thus, session is not set yet. This is the expected behaviour.

If you need to load a page after setting session data, you should set session data and then send a redirection or refresh header (remember not to send anything, not even whitespace before sending headers).

Always consider session data to be updated after the next page load (as in http request completed).
mike at basementideas dot com
08-Jul-2008 03:05
The note about an included file not being able to access the sessions is not true.  You just have to do a session_start(); in the included file.

This is what drove me here today, because I was noticing the same thing.  But I tried the above on a whim and it works fine.  You wouldn't think you'd need to start a session twice, but I guess the scripts are looked on as separate in that regard.

Mike
pushedx
02-Jul-2008 01:01
Here is something to watch out for when working with sessions.

Let's say you have two pages, Page A and Template Z. If Page A sets session data and includes Template Z, the session data is not properly registered for the execution of Template Z due to how session data is written *after* a script has executed [1].

As a result, your second page will not have the right session data, so you are a bit in a pickle. I'm sure there are other work arounds, perhaps with cookies or flat files, but you cannot use session data in that fashion.

The reason I have this setup is because I will have a number of Page A-Z's that will contain page specific content and one Template Z page that renders each page's specific content in the site layout. This way, the site content changing is independent of the style the site uses and the site style can change without modifying the actual content. It's a dynamically configurable site template design.

[1] See the  "session_write_close" documentation page.
add a note add a note

소개> <msession_unlock
Last updated: Fri, 30 Jan 2009
 
 
show source | credits | sitemap | contact | advertising | mirror sites