>> What's actually stored on the server when using sessions?
>>
>> I've built a content management system on a commercial host, PHP 4.3.2,
>> Apache 1.3.28, and use session_save_path() to specify a directory. When
>> someone logs in, I check the username and password against the database, and
>> save username as a session variable -- $valid_user = $username;
>> session_register("valid_user"); If I examine the directory specified by
>> session_save_path(), I see something like "sess_4f5d...0367". Where's the
>> session variable "valid_user"? Is it an array element of "sess_whatever", or
>> are session variables stored in memory with only the ID stored on the
>> server?
> Open sess_4f5d...0367 in any text editor and you will see your variable
> there.
I can't. I'm unable to open or download or change the permissions. Is it an
array?
>> A related question -- I thought that by specifying a directory with
>> session_save_path(), the session data would not be subject to garbage
>> collection. However, when I examine the directory specified, I don't see any
>> creation dates more than 24 hours old, and I know there have been instances
>> where the Mac OS X Entourage/Internet Explorer bug have caused sessions to
>> fail, so the user never logged out, and session_unregister() and
>> session_destroy() were never called for those sessions. Why aren't those
>> sessions still listed in the sessions directory?
> session_start() runs garbage collector in current session save path
> directory. The plus is you are not affected by other virtual hosts on
> the same server.
So if I want to create sessions that last indefinitely (as least as far as
the server is concerned), do I need to write my own session functions that
use a database to store the session ID?
--
Lowell Allen
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
