--- Dennis Gearon <[EMAIL PROTECTED]> wrote: > At one time, I thought that I read about a problem with PHP4 > sessions involving the recognitioni of the session expiration in > the session engine. > > The problem was that the session variables were read into the > scipt BEFORE the expiration time was checked. Anyone remember > this? So, I'm asking if there's anyone here with an > AUTHORITATIVE answer I ( i.e. you've tested this, or you've > written on the code for PHP sessions) to which order the > following three task run when a script is requested? > ------------------------------------------------------------ > > [A] read session file and load session vars if file and PHPSESSID > both exist at request time > [B] delete sesssion if expired > [C] run garbage collection
I'll admit that I didn't read your question caerfully enough to understand what you're asking, but these things are usually very easy to figure out on your own. How? Use session_set_save_handler() to write your own functions. These functions can do their job in addition to anything else you want, such as logging when they were called and with what parameters. This log should answer any questions you might have about the order of operations. Hope that helps. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming December 2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
