search
HomeBackend DevelopmentPHP TutorialPHP session and cookie summary sharing

PHP session and cookie summary sharing

Mar 12, 2018 am 11:48 AM
cookiephpsession

This article mainly shares with you a summary of PHP sessions and cookies, hoping to help everyone.

1. The relationship between cookie and session
Although the cookie and session solutions belong to the client and server respectively, the implementation of the server's session is dependent on the client's cookie; the steps are roughly as follows:
1. The server executes the Session mechanism
2. Generate the corresponding and unique session_id (by parsing and processing this session_id, the server can find the file saved by the session; and then extract the session information from the file )

3. The server will send this session_id to the client
The client receives the session_id and saves it with cookie as a storage container
4. The client will send the session_id to the client in each request This session_id will be brought to the server when
The server parses the session by itself

Note: There are many ways to save information in a session: cache, database, file, etc.; but the default is to save it in file form. . .

2. Timing of creating session and destroying session
When creating a session, a cookie will be created, and its MaxAge is -1, which means it can only exist in memory. When cookies are disabled on the browser, this cookie will still be created.
When the request submitted by the browser contains the jsessionid parameter or cookie header, the container no longer creates a new session, but only finds the previous session for association. There are two situations here:
1) Use jsessionid. If this value can correspond to an existing session, no new session will be created. Otherwise, a new session will still be created.
2) Use cookies. If this value can correspond to an existing session, no new session will be created; but if there is no session corresponding to it (like after restarting the server above) the container will restore the corresponding session based on the cookie information, as if It's been the same before.
3.When is the session destroyed?

When we close the browser, open it again, and connect to the server, the server will allocate a new session, which means a new session will be started. So has the original session been destroyed? I did a small experiment:

Create a session:

session_start();//Register the session variable and assign $_SESSION["username"] = "hello"//Output generation session_idecho session_id();

Visit the page to create a session, get the session_id, close the browser;

Create a session object based on session_id

$session_id = "qpk6onnn3husvotnke030ftcm4";
session_id($session_id);
session_start();
echo $_SESSION["username"];  //结果取出session

So

When the browser is closed, the original session is not destroyed (the destroy method is not executed), but the session is destroyed until the timeout expires. Closing the browser only clears the cookies related to the original session in the client's memory. When the browser is opened again to connect, the browser cannot send cookie information, so the server will think it is a new session. Therefore, if there are certain resources associated with the session that you want to clean up when you close the browser (such as temporary files, etc.), you should send a specific request to the server instead of waiting for the session to be automatically cleaned up.

Related recommendations:

php realizes that the member login registration page has html plus Session and Cookie

realizes session and cookie data transmission in PHP Value function

php learning the difference between session and cookie

The above is the detailed content of PHP session and cookie summary sharing. For more information, please follow other related articles on the PHP Chinese website!

Statement
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
What is the full form of PHP?What is the full form of PHP?Apr 28, 2025 pm 04:58 PM

The article discusses PHP, detailing its full form, main uses in web development, comparison with Python and Java, and its ease of learning for beginners.

How does PHP handle form data?How does PHP handle form data?Apr 28, 2025 pm 04:57 PM

PHP handles form data using $\_POST and $\_GET superglobals, with security ensured through validation, sanitization, and secure database interactions.

What is the difference between PHP and ASP.NET?What is the difference between PHP and ASP.NET?Apr 28, 2025 pm 04:56 PM

The article compares PHP and ASP.NET, focusing on their suitability for large-scale web applications, performance differences, and security features. Both are viable for large projects, but PHP is open-source and platform-independent, while ASP.NET,

Is PHP a case-sensitive language?Is PHP a case-sensitive language?Apr 28, 2025 pm 04:55 PM

PHP's case sensitivity varies: functions are insensitive, while variables and classes are sensitive. Best practices include consistent naming and using case-insensitive functions for comparisons.

How do you redirect a page in PHP?How do you redirect a page in PHP?Apr 28, 2025 pm 04:54 PM

The article discusses various methods for page redirection in PHP, focusing on the header() function and addressing common issues like "headers already sent" errors.

Explain type hinting in PHPExplain type hinting in PHPApr 28, 2025 pm 04:52 PM

Article discusses type hinting in PHP, a feature for specifying expected data types in functions. Main issue is improving code quality and readability through type enforcement.

What is PDO in PHP?What is PDO in PHP?Apr 28, 2025 pm 04:51 PM

The article discusses PHP Data Objects (PDO), an extension for database access in PHP. It highlights PDO's role in enhancing security through prepared statements and its benefits over MySQLi, including database abstraction and better error handling.

How to create API in PHP?How to create API in PHP?Apr 28, 2025 pm 04:50 PM

Article discusses creating and securing PHP APIs, detailing steps from endpoint definition to performance optimization using frameworks like Laravel and best security practices.

See all articles

Hot AI Tools

Undresser.AI Undress

Undresser.AI Undress

AI-powered app for creating realistic nude photos

AI Clothes Remover

AI Clothes Remover

Online AI tool for removing clothes from photos.

Undress AI Tool

Undress AI Tool

Undress images for free

Clothoff.io

Clothoff.io

AI clothes remover

Video Face Swap

Video Face Swap

Swap faces in any video effortlessly with our completely free AI face swap tool!

Hot Tools

ZendStudio 13.5.1 Mac

ZendStudio 13.5.1 Mac

Powerful PHP integrated development environment

Notepad++7.3.1

Notepad++7.3.1

Easy-to-use and free code editor

Zend Studio 13.0.1

Zend Studio 13.0.1

Powerful PHP integrated development environment

SecLists

SecLists

SecLists is the ultimate security tester's companion. It is a collection of various types of lists that are frequently used during security assessments, all in one place. SecLists helps make security testing more efficient and productive by conveniently providing all the lists a security tester might need. List types include usernames, passwords, URLs, fuzzing payloads, sensitive data patterns, web shells, and more. The tester can simply pull this repository onto a new test machine and he will have access to every type of list he needs.

Atom editor mac version download

Atom editor mac version download

The most popular open source editor