As I said, "**rather** than relying on cookie expiration". This
*necessarily* means that you will need to set the cookie expiration
to sometime way in the future, like next year (or more dynamically,
use the date() and mktime() functions to always set the cookie
expiration to + 1 yr from "today"). If you do this, you will have no
chance of the cookie itself expiring; therefore you can rely solely
on the $_SESSION variable. The cookie will contain the session id
that the webserver will be able to use to repopulate the $_SESSION
variable as long as $_SESSION['expiration'] is still in the future.
If $_SESSION['expiration'] is in the past (or is empty) and you issue
a session_destroy() and a setcookie(), the cookie can be destroyed, too.
I have written something similar to this in the past, and it behaves
exactly as you would like and expect. Another benefit is that this is
more secure than relying on a cookie-supplied expiration time.
Jordan
On Sep 6, 2005, at 8:51 PM, Dan Rossi wrote:
client cookie expires hence no more session ...
On 07/09/2005, at 1:57 AM, Jordan Miller wrote:
Hi Dan,
Couldn't you store an expiration time directly in the $_SESSION
variable, rather than relying on cookie expiration (if I
understand your question correctly)? Each time a page is loaded,
update the expiration time in this variable to +24hr from the
current time (all times relative to the server's time). Then, it
shouldn't matter from which time zone the user is browsing.
Jordan
On Sep 6, 2005, at 10:37 AM, Dan Rossi wrote:
hi there I have run into problems with sessions , cookies and
expiryt times with different time zones. Ie our server is in the
States however I am browsing from Koala land downunder. I have
been trying to get the session to expire in a day, however for
ppl in the states this is ok, but for me its already expired so i
have been experiencing issues. How do i solve this ?
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
