A brief discussion on the difference between COOKIE and SESSION, a brief discussion on cookiesession

Home

Backend Development

PHP Tutorial

A brief discussion on the difference between COOKIE and SESSION, a brief discussion on cookiesession_PHP tutorial

WBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWBOYWB

Jul 13, 2016 am 09:46 AM

cookiesessionthe differenceconnect

1. Cookie introduction

Cookies are often used to identify users. Cookies are small files that a server leaves on a user's computer. Whenever the same computer requests a page through the browser, it also sends the cookie. With PHP, you can create and retrieve cookie values.

1. Set Cookie

PHP uses the SetCookie function to set cookies.

The SetCookie function defines a Cookie and appends it to the end of the HTTP header. The prototype of the SetCookie function is as follows:
int SetCookie(string name, string value, int expire, string path, string domain, int secure);

Parameter description: cookie name, cookie value, expiration time (int), valid path, limited domain name, https delivery is valid

Note: The currently set cookie does not take effect immediately, but will not be visible until the next page. This is because the cookie is passed from the server to the client's browser on the page that is set, and the browser will not be able to see it until the next page. The reason for removing the cookie from the client's machine and sending it back to the server.

Usage example:

Normal use:

setcookie('name','PHP Huaibei');

With expiration time:
setcookie('name','PHP Huaibei',time() 24*60*60);//1day

Cookies are path-oriented and are stored under the current file by default. If the path is not set, cookies under different files are saved in different folders by default, as shown in the figure: By default they are saved in the mytest folder

2. Receive and process Cookies

The web communication protocol between the client and the server is http. The three commonly used methods for PHP to obtain user data through http are: POST method, GET method and Cookie. The default delivery method of PHP is Cookie, which is also the best method.

For example, if you set a cookie named MyCookier, PHP will automatically analyze it from the HTTP header received by the WEB server and form a variable like an ordinary variable named $myCookie. The value of this variable is the cookie. Value

3. Delete Cookies

To delete an existing cookie, there are two ways:

The first is to call SetCookie with only the name parameter, then the cookie with this name will be deleted from the related computer; for example: setcookie('name','');
Another way is to set the cookie expiration time to time() or time()-1, then the cookie will be deleted (actually expired) after the page is browsed. For example: setcookie('name','PHP Huaibei',time()-24*60*60);
It should be noted that when a cookie is deleted, its value is still valid on the current page.
Notes on using cookies:

First of all, it must be set before the content of the HTML file is output (Cookie is part of the HTTP protocol header and is used to transfer information between the browser and the server, so the Cookie function must be called before any content belonging to the HTML file itself is output.
You can use

on the PHP page first

ob_start();//Start

code…..

ob_end_flush(); //Refresh cache

can prevent header prompt error);

Different browsers handle cookies differently
Cookie restrictions are on the client side. The maximum number of cookies that can be created by a browser is 30, and each cookie cannot exceed 4KB. The total number of cookies that can be set by each WEB site cannot exceed 20.
The currently set cookie does not take effect immediately, but will not be visible until the next page

2. Session introduction

The session mechanism is a server-side mechanism. The server uses a structure similar to a hash table (or a hash table) to save information. Each website visitor will be assigned a unique identifier, that is, a session ID, its storage form is nothing more than two: either passed through the url, or stored in the cookies of the client. Of course, you can also save the Session in the database, which will be safer, but the efficiency will be reduced. The url method The transfer security is definitely too poor. PHP's session mechanism is to set a cookie and save the session ID (Session ID) in the cookie. A session file will be generated on the server side and associated with the user. The web application stores data related to these sessions. , and transferred between pages.

PHP related functions

There are many functions related to Session in PHP, but these are the few functions we use most:

session_start(): Enable the session mechanism and call it at the beginning of the program file that needs to use the session.

session_register(): Register session variable

session_unregister(): Delete session variables (one by one)

session_is_registered(): Determine whether the session variable is registered

session_distroy(): Destroy all session variables (all session variables are destroyed, including files)

You need to pay attention to the following aspects:

1. The function session_start() must be executed at the beginning of the program, and there cannot be any output content in front of it, otherwise

"Warning: Cannot send session cookie - headers already
will appear

sent" a warning message like this.

2. The function session_register() is used to register relevant variables to be saved in the session. Its usage is as follows:

<&#63;php
 
$val = "session value";
 
session_register("val");
 
&#63;>

val is the name of the session variable to be registered. Do not add the "$" symbol when registering, just write the variable name.

3. The function session_unregister() has exactly the same usage as the above function, but has the opposite function. The above function is to register

session variable, which deletes the specified session variable.

4. The function session_is_registered() is used to determine whether the session variable is registered.

5. The function session_destroy() is mainly used to destroy all session variables when the system logs out and exits. It has no parameters and can be called directly.

Configuration of the relationship between Session and PHP.ini

1,session.save_handler = file

The method used to read/write back session data, the default is files. It will cause PHP's session management function to use the specified text file to store session data

2,session.save_path = “/xammp/temp/”

Specify the directory to save the session file. You can specify another directory. However, the specified directory must have write permissions from the httpd daemon owner (such as apache or www, etc.), otherwise the session data cannot be restored. It can also be written like session.save_path = "N;/path" where N is an integer. This means that not all session files are saved in the same directory, but are scattered in different directories. This is helpful when the server handles a large number of session files. (Note: The directory needs to be created manually)

3,session.auto_start = 0

If this option is enabled, the session will be initialized for each user request. Not recommended, it is better to initialize the session explicitly through session_start().

The above is the entire content of this article, I hope you all like it.

Statement

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

PHP's Purpose: Building Dynamic WebsitesApr 15, 2025 am 12:18 AM

PHP is used to build dynamic websites, and its core functions include: 1. Generate dynamic content and generate web pages in real time by connecting with the database; 2. Process user interaction and form submissions, verify inputs and respond to operations; 3. Manage sessions and user authentication to provide a personalized experience; 4. Optimize performance and follow best practices to improve website efficiency and security.

PHP: Handling Databases and Server-Side LogicApr 15, 2025 am 12:15 AM

PHP uses MySQLi and PDO extensions to interact in database operations and server-side logic processing, and processes server-side logic through functions such as session management. 1) Use MySQLi or PDO to connect to the database and execute SQL queries. 2) Handle HTTP requests and user status through session management and other functions. 3) Use transactions to ensure the atomicity of database operations. 4) Prevent SQL injection, use exception handling and closing connections for debugging. 5) Optimize performance through indexing and cache, write highly readable code and perform error handling.

How do you prevent SQL Injection in PHP? (Prepared statements, PDO)Apr 15, 2025 am 12:15 AM

Using preprocessing statements and PDO in PHP can effectively prevent SQL injection attacks. 1) Use PDO to connect to the database and set the error mode. 2) Create preprocessing statements through the prepare method and pass data using placeholders and execute methods. 3) Process query results and ensure the security and performance of the code.

PHP and Python: Code Examples and ComparisonApr 15, 2025 am 12:07 AM

PHP and Python have their own advantages and disadvantages, and the choice depends on project needs and personal preferences. 1.PHP is suitable for rapid development and maintenance of large-scale web applications. 2. Python dominates the field of data science and machine learning.

PHP in Action: Real-World Examples and ApplicationsApr 14, 2025 am 12:19 AM

PHP is widely used in e-commerce, content management systems and API development. 1) E-commerce: used for shopping cart function and payment processing. 2) Content management system: used for dynamic content generation and user management. 3) API development: used for RESTful API development and API security. Through performance optimization and best practices, the efficiency and maintainability of PHP applications are improved.

PHP: Creating Interactive Web Content with EaseApr 14, 2025 am 12:15 AM

PHP makes it easy to create interactive web content. 1) Dynamically generate content by embedding HTML and display it in real time based on user input or database data. 2) Process form submission and generate dynamic output to ensure that htmlspecialchars is used to prevent XSS. 3) Use MySQL to create a user registration system, and use password_hash and preprocessing statements to enhance security. Mastering these techniques will improve the efficiency of web development.

PHP and Python: Comparing Two Popular Programming LanguagesApr 14, 2025 am 12:13 AM

PHP and Python each have their own advantages, and choose according to project requirements. 1.PHP is suitable for web development, especially for rapid development and maintenance of websites. 2. Python is suitable for data science, machine learning and artificial intelligence, with concise syntax and suitable for beginners.

The Enduring Relevance of PHP: Is It Still Alive?Apr 14, 2025 am 12:12 AM

PHP is still dynamic and still occupies an important position in the field of modern programming. 1) PHP's simplicity and powerful community support make it widely used in web development; 2) Its flexibility and stability make it outstanding in handling web forms, database operations and file processing; 3) PHP is constantly evolving and optimizing, suitable for beginners and experienced developers.

See all articles