On 25.05.2018 at 12:28, Christoph M. Becker wrote:
> if ($_GET['action'] == 'newsession') {
> $session_name = getNewSessionName(); // user-defined function
> session_name($session_name);
> session_regenerate_id();
> header('Location: ' ….); // restart script to use new session name
> and id
> exit;
> }
>
> Why even call session_name($session_name) here? To my knowledge, this
> is a no-op in this case (assuming a session has already been started).
I have to correct myself. Actually, the call to session_regenerate_id()
did change the session name (i.e. the cookie etc.) I'm still not
convinced, that this BC break should be reverted.
--
Christoph M. Becker
--
PHP Internals - PHP Runtime Development Mailing List
To unsubscribe, visit: http://www.php.net/unsub.php
