PHPBuilder.com, the best resource for PHP tutorials, templates, PHP manuals, content management systems, scripts, classes and more.

Linux Today
Enterprise Linux Today
Apache Today
JustLinux.com
Linux Planet
PHPBuilder
All Linux Devices
Hiermenus
DatabaseJournal
Technology Jobs

IT
Developer
Internet News
Small Business
Personal Technology

Search internet.com
Advertise
Corporate Info
Newsletters
Tech Jobs
E-mail Offers

Covalent Extends Apache 2.0 to Microsoft ASP.NET
ShopWorX - Support for Windows
PHP Security Advisory: Vulnerability in PHP versions 4.2.0 and 4.2.1
Network Risk Assessment
Full-Featured, Java-Based Apache GUI

Partners & Affiliates

Review: Rapid PHP 2005
In Case You Missed It... The Month of June 2006
Introduction to Arrays and Hashes in PHP
WAP In Perspective
Learning PHP Using the DIY Method

Sr. Web Developer
mediabistro.com
US-NY-New York

Post A Job | Post A Resume

Session Management with PHP4

So, What Does This Do For Me?

Legitimate question. There are too many ways to use session management and session variables to include them all here, but I'll give you an example. Say you're building a community site, like I've been doing, you might want to keep the name of the currently authenticated user and perhaps how many new messages he's got. In order to keep the load off the database you're using, you want to cache the number of messages. You could do this two ways;

You could use three cookies:

authenticated_user - The currently authenticated username (or id)
num_messages - The number of messages he's got
expire_time - When to recache the number of messages

Use sessions and register three session variables.

The first method limits security, someone can fake the cookies and virtually get access to another user's account. It's messy because of all the Header() calls you need to do, it's overall ugly, and you might get inconsistent data in case the user refuses to accept one of the cookies.

With sessions, the user only has to accept one cookie, you keep much better consistency in your data and you get a bit more security.

Drawbacks

Session gives you freedom, flexibility and functionality that is assiciated with any good serverside scripting language. Though, PHP4 session has a few limitations; first off all, you cannot store objects in the sessions, which would have been absolutely fantastic, just imagine storing a complete user object in the session.. Second, storing data in session variables is not very efficient because PHP4 is using files to store session information, but overall I'm very satisfied with how PHP4 session management works.

Try it out - you'll like it.

[Page 1] [Page 2]

Comments:
Assist	shafeeq	04/10/07 01:18
RE: /tmp/mysql.sock ERROR session	Pranav	12/10/05 07:43
Getting session value	Jacob	11/25/04 07:41
RE: question	rakheeb	02/24/04 00:21
RE: Storing objects in sessions	John Pierce	07/23/03 20:31
RE: IE6 not destroying sessions	Darren	06/19/03 12:20
RE: failed to write session data..	Oscar F. Duron	01/25/03 00:16
Sessions & "Remember Me" cookie	Syberius	10/24/02 13:04
session management	suma	10/10/02 04:09
Storing objects in sessions	Pavel Steinl	09/15/02 12:35
file upload not working	swanand	09/09/02 03:36
session perform diff Internet and Intranet	Andrew	09/03/02 04:01
RE: IE6 not destroying sessions	m.strijbos	09/02/02 09:44
RE: session_id() issue	m.strijbos	09/02/02 09:39
No Values in my $_SESSION[] array..........	Vamshi	08/19/02 05:01
Session_destroy, new session_id	David Cervetti	08/16/02 15:57
write session file problem	Fabio R Segundo	08/14/02 15:55
RE: Problems with accessing session variables	michael	08/07/02 01:40
/tmp/mysql.sock ERROR session	Nilson	07/23/02 14:32
session_destroy() not called on browser close	Wayne Cope	07/21/02 13:50
session_id() issue	kasimodo	07/16/02 03:27
RE: how to redirect?	coffee	07/11/02 06:00
RE: Warning: Open(/var/tmp/sess(#$&*#	Tim Wesoly	07/10/02 07:03
RE: IE6 not destroying sessions	John Young	07/09/02 00:07
RE: Session ID in the URL+SE unfriendly issue	john	07/04/02 21:00
RE: Session Overwritten	Do Minh Duc	06/28/02 02:17
RE: new session_id	Do Minh Duc	06/28/02 01:39
Warning: Open(/var/tmp/sess(#$&*#	Bryan	06/18/02 19:22
Session ID in the URL	Aram	06/13/02 07:36
new session_id	Martin	05/28/02 12:23
what is php	fariba	05/28/02 02:51
RE: Session Overwritten	Ram Dongre	05/22/02 07:42
Session Problem	Ram Dongre	05/22/02 01:35
Session Overwritten	laypeng	05/02/02 04:34
sesseion management	Vishi	04/24/02 07:08
Passing Sessions - HELP!	Phil Powell	04/18/02 12:33
how to redirect?	chen	04/18/02 12:26
Session Management	Charlie	04/17/02 04:52
RE: session write error	Tim	04/11/02 17:12
RE: SessionVariable not accessible	Do Minh Duc	04/11/02 01:28
SessionVariable not accessible	Gali	04/10/02 13:56
RE: include files and other files..?	Hasangi	04/08/02 05:04
PHP 4.1.2. session problems	Chrisy	03/27/02 05:09
session write error	German O	03/21/02 15:27
flatDBfile and sesions	Frank Schellenberg	03/20/02 12:55
RE: Doing Something wrong Environment variables?	Session bugs in 4.1.2	03/19/02 09:06
RE: session write error ???	Session bugs in 4.1.2	03/19/02 08:26
Session failed	wayan	03/18/02 02:23
RE: session variable access problem	Xaver	03/15/02 13:20
RE: How to store objects in Session	Will Steffen	03/14/02 08:40
IE6 not destroying sessions	gary weir	03/11/02 10:00
RE: How can i check if a user had been inactive?	Birger Kung	03/07/02 11:33
Session Management Object	Fend0r	03/03/02 16:06
How can i check if a user had been inactive?	tushar	02/12/02 15:20
arrays in session	shahjahan	02/06/02 05:50
Secciones en php 4	Yordankis Fernandez	02/04/02 14:51
RE: session variable access problem	kor	01/28/02 05:46
session variable access problem	deepak	01/22/02 23:43
Problems with accessing session variables	apairudin	01/20/02 22:54
Cant Override Session-Vars	Jakob K�lzer	01/20/02 06:36
RE: IP Display	Samhain	01/17/02 10:41
IP Display	Born2fly	01/13/02 08:47
RE: session write error ???	Randy	12/28/01 14:12
RE: session variables	Todd	12/23/01 21:35
Passing Variable To Another Page	Asmadi Ali	12/22/01 03:06
session variables	Richard Williams	12/19/01 20:18
Authentication	Umashankari	12/18/01 22:16
session	flashcool	12/17/01 04:36
session write error ???	Rob	12/11/01 19:45
question	santiago	11/29/01 18:24
Help?	Jitendra	11/26/01 08:32
RE: Problem to access History pages	Velimir Sanjkovic	11/22/01 11:05
SessionID remains	MichaelV	11/17/01 04:37
RE: failed to write session data..	Parinda	11/15/01 06:28
RE: Doing Something wrong Environment variables?	progenius	11/13/01 16:53
Please!! someone HELP ME!!	David T	11/11/01 19:29
Problem to access History pages	Hardik	11/11/01 12:04
Sessions - Soo Slow...	Ran	10/29/01 21:55
Retrieving Session Variables	Jimin Bhuptani	10/24/01 11:40
Class, Function as Session	SmileBit	10/16/01 09:57
It worked the first time...	TekFox	10/02/01 19:13
Doing Something wrong Environment variables?	Ben	09/30/01 19:45
RE: Session error	badchenn	09/10/01 17:04
RE: Interesting session troubles	Brad G	09/09/01 14:21
what do i need php for daily job	sachinras4e	09/09/01 11:49
Interesting session troubles	Brad G	09/06/01 10:51
Session error	Jules NKAMLA TENE	08/25/01 15:13
Belo Artigo. Faltou um exemplo.	Jonas A. Lima	08/19/01 11:24
RE: session_start, and the loss of data in c	Juju	08/16/01 12:10
failed to write session data..	phil	08/15/01 11:36
storing, retrieving objects and fatal errors	Jonathan	08/09/01 19:09
Tks for writing this article	sanjukta	08/06/01 02:06
Session - connection_aborted	Tay	08/05/01 20:56
unsupported or undefined function session_sta	Steve	07/25/01 03:57
what means the session in php it doesn�t	gufen	07/24/01 08:11
Help, Session_start Error	Mulianto	07/20/01 07:48
RE: Problem with session_start() (PHP4)	Praveen	07/19/01 21:44
How to store objects in Session	Ron MacNeil	07/11/01 12:20
enquery	ghanshyamlalwani	07/06/01 21:23
RE: it is realy not secure	Flanders	07/05/01 03:04
RE: no objects in sessions?	hattworks	06/28/01 10:44
RE: session_start, and the loss of data in c	Mario Salinas	06/21/01 22:27
Sessions in N4.7	Ryan	06/08/01 19:44
Session Management	Jim Henderson	05/26/01 05:36
no objects in sessions?	Patrik	05/25/01 10:03
session_start, and the loss of data in cache	Eugene Shull	05/22/01 06:19
Destroying Sessions??	Andrew	05/21/01 17:46
Help needed with session variables	Chunhui	05/16/01 09:57
RE: Session management in PHP4 vs PHPLIB	phil3k	04/29/01 15:09
Session start	Mahendran	04/20/01 15:45
RE: Problem with session_start() (PHP4)	Glan	04/18/01 06:48
RE: Problem with session_start() (PHP4)	Chunguis	04/17/01 02:19
Problem with session_start() (PHP4)	Eduard	04/12/01 06:30
global session	keyur	04/06/01 07:01
serializing arrays into sessions...	Christian Dechery	03/29/01 21:24
RE: a simple example needed	fahad	03/29/01 11:50
Session with Frame?	why	03/26/01 22:37
RE: Can you Help me?(about session)	Eric Blade	03/26/01 12:06
RE: --enable-trans-sid problem.	Eric Blade	03/26/01 12:03
RE: Privacy and Session Management	Eric Blade	03/26/01 12:02
RE: Session variables and associative arrays	Eric Blade	03/26/01 11:56
RE: it is realy not secure	Eric Blade	03/26/01 11:53
RE: Drawbacks for loadbalanced WWW servers..	Eric Blade	03/26/01 10:09
A nice article	John Asendorf	03/22/01 15:03
Sessions existing DB	WayneK	03/15/01 22:47
RE: include files and other files..?	Jani Kaarela	03/13/01 05:58
RE: session_destroy();	Jani Kaarela	03/13/01 05:55
Can you Help me?(about session)	Jun	03/12/01 01:14
RE: Help required with sessions	phpcoder	03/06/01 03:40
RE: error w/ session start	Jeremy	03/02/01 15:17
include files and other files..?	Chris	02/27/01 22:39
session_save_path()	till topf	02/27/01 13:23
error w/ session start	Dana	02/26/01 20:08
session.save_path	diane	02/21/01 16:17
Back will data missing	Addison	02/17/01 07:07
RE: session_destroy();	Aaron	02/10/01 06:37
--enable-trans-sid problem.	Oskar Edespong	02/08/01 14:36
RE: session_destroy();	Kwok	02/06/01 07:25
Privacy and Session Management	Jeremy Castro	01/30/01 13:32
RE: Help required with sessions	Tom Garcia	01/29/01 17:29
Help required with sessions	Tabish	01/25/01 10:08
Session variables and associative arrays	Richard Luck	01/09/01 19:29
it is realy not secure	matwej	01/04/01 15:39
RE: instantiate class into session variable	Sam Nicholson	01/02/01 21:37
Problems using MM for session data	Simon Greaves	12/27/00 08:34
RE: What happens when Browser window is closed?	numeric	12/06/00 20:13
sessions (PHP4 & Flash)	c�line jaume	11/30/00 05:55
What happens when Browser window is closed?	Ranjith	11/20/00 04:19
RE: a simple example needed	Mauricio Strello	11/16/00 10:29
send session variable?	Bea	11/08/00 12:27
a simple example needed	naveen lartius	11/06/00 23:11
session_destroy();	Bryan	10/09/00 18:01
RE: Drawbacks for loadbalanced WWW servers..	Mattias Nilsson	09/13/00 17:06
RE: Session management in PHP4 vs PHPLIB	Peter	09/05/00 17:42
instantiate class into session variable	Ryan Thomas	08/21/00 10:55
RE: Drawbacks for loadbalanced WWW servers..	Jordan Husney	08/13/00 20:12
Drawbacks for loadbalanced WWW servers..	Nate	07/09/00 23:06
Session management in PHP4 vs PHPLIB	Pete	07/06/00 10:04
If you are looking for help, please post on the appropriate forum here. Your questions will be answered much more quickly. Add A Comment: Name: Email: Subject: Message: To reduce spam posts, messages are now manually approved You are not [logged in]. That means your account will not get credit for this post.

Add A Comment: