简体中文(ZH-CN) English(EN) 繁体中文(ZH-TW) 日本語(JA) 한국어(KO)
Home > Backend Development > PHP Tutorial > body text

11 Session and data retention

WBOY
Release: 2016-07-29 08:55:24
Original
1060 people have browsed it

1 Maintain user information in the website through SessionID


session_start();
$_SESSION['visits']++;
print'You have visited here '.$_SESSION['visits'].' times.
';
echo'session id = '.$_COOKIE['PHPSESSID'];
echo"
";
echo"session name = ".session_name()."
";
?>
Copy after login

SessionID is recorded in the global variable _COOKIE. The name of SessionID is PHPSESSID, and PHPSESSID can also be obtained through session_name().

2 Prevent Session Hijacking


ini_set('sessio.use_only_cookies', true);
session_start();
$salt = 'YourSpecialValueHere';
$tokenstr = date('W').$salt;
$token = md5($tokenstr);
echo'token = '.$token.'
';

if(!isset($_REQUEST['token']) || $_REQUEST['token'] != $token)
{
    exit;
}
$_SESSION['token'] = $token;
output_add_rewrite_var('token', $token);
echo'link';
ob_flush();
output_reset_rewrite_vars();
?>
Copy after login

session_start();
output_add_rewrite_var('var', 'value');

echo'link';
ob_flush();

output_reset_rewrite_vars();
echo'link';
?>以上例程会输出:

<ahref="file.php?PHPSESSID=xxx&var=value">linka><ahref="file.php">linka>
Copy after login

3 Prevent Session Customization

  • Will not append the session identifier to the session cookie on the URL.
  • Frequently generate new session ID

ini_set('session.use_only_cookie', true);
session_start();
if(!isset($_SESSION['generated']) || $_SESSION['generated'] < (time() - 30))
{
    session_regenerate_id();
    $_SESSION['generated'] = time();
}
echo$_COOKIE['PHPSESSID']
Copy after login
').addClass('pre- numbering').hide(); $(this).addClass('has-numbering').parent().append($numbering); for (i = 1; i ').text(i)); }; $numbering.fadeIn(1700); }); });

The above has introduced 11 Session and data retention, including aspects of it. I hope it will be helpful to friends who are interested in PHP tutorials.

Related labels:
gt lt session token
source:php.cn
Previous article:URL, form data, IP and other processing classes php url parameters url parameters array jquery gets url parameters Next article:PHP preg_match regular expression function example
Statement of this Website
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Latest Articles by Author
Latest Issues
Insert file size into database I'm uploading a file and the size remains 0 in the database $djenjang_capaian=$this->se...
From 2023-09-13 12:14:32
0
1
289
Rerunning useEffect: Guidelines after submitting a function Hello everyone! In my project I execute a function in useeffect that gets data, but when I...
From 2023-09-10 11:06:03
0
2
308
Retrieve all database records contributed by an individual How to get all rows in database table inserted by logged in person? I will provide the fol...
From 2023-09-08 16:10:51
0
1
296
Inside useEffect, two conditional branches are triggered when the page is refreshed This is the useEffect code in the React component. import{useSession}from'@supabase/auth-h...
From 2023-09-03 14:09:00
0
2
279
Rewrite the title as: Translate "Array as session variable" into Chinese as "Use array as session variable" In PHP, is it possible to set an array as a session variable? The situation is that I have...
From 2023-08-21 18:07:56
0
2
246
Related Topics
More>
Popular Recommendations
Popular Tutorials
More>
Related Tutorials
Popular Recommendations
Latest courses
Latest Downloads
More>
Web Effects
Website Source Code
Website Materials
Front End Template
About us Disclaimer Sitemap
php.cn:Public welfare online PHP training,Help PHP learners grow quickly!