Presentation is loading. Please wait.

Presentation is loading. Please wait.

Sessions in PHP – Page 1 of 13CSCI 2910 – Client/Server-Side Programming CSCI 2910 Client/Server-Side Programming Topic: Sessions in PHP Reading: Williams.

Published byBelinda Brown Modified over 8 years ago

Similar presentations

Presentation on theme: "Sessions in PHP – Page 1 of 13CSCI 2910 – Client/Server-Side Programming CSCI 2910 Client/Server-Side Programming Topic: Sessions in PHP Reading: Williams."— Presentation transcript:

1 Sessions in PHP – Page 1 of 13CSCI 2910 – Client/Server-Side Programming CSCI 2910 Client/Server-Side Programming Topic: Sessions in PHP Reading: Williams & Lane pp. 338-368

2 Sessions in PHP – Page 2 of 13CSCI 2910 – Client/Server-Side Programming Today’s Goals Today’s lecture will cover: An introduction to sessions, their purpose, and their use Starting and stopping a session Using session variables

3 Sessions in PHP – Page 3 of 13CSCI 2910 – Client/Server-Side Programming Purpose of a Session In general, HTTP is a "stateless" system, i.e., clients access documents through links without regard to past interactions This is not acceptable when it comes to managing a complex interaction with a client such as: –the use of a shopping cart; –logging into a database or other secure site; or –tracking a user's settings/data values as he or she progresses through a site.

4 Sessions in PHP – Page 4 of 13CSCI 2910 – Client/Server-Side Programming Mechanics of a Session Session is identified using a session ID (32 digit hexadecimal value) The session ID is transmitted between the client and server with each HTTP request and response Client keeps track of a session through the use of a cookie Server keeps track of a session through locally stored text files or a database

5 Sessions in PHP – Page 5 of 13CSCI 2910 – Client/Server-Side Programming Mechanics of a Session (continued) Databases are used for large traffic applications while text files are used for lower traffic. The server maintains the session variables in the text file or database. To prevent security risks due to someone hijacking an old session and to avoid clogging the server with unused sessions, the server will clean up old sessions after a specified timeout period.

6 Sessions in PHP – Page 6 of 13CSCI 2910 – Client/Server-Side Programming Implementing a Session session_start() – creates a new session or finds an existing session. Basically, it identifies a session and accesses the session's variables if it is an existing session. Once a session has been started, the session's variables are accessed through a superglobal associative array called $_SESSION. (This is the same sort of array as $_GET and $_POST.) Example: $_SESSION[variable_name]

7 Sessions in PHP – Page 7 of 13CSCI 2910 – Client/Server-Side Programming Implementing a Session (continued) Because of the dual purpose of session_start(), i.e., it can initialize a session or access an existing one, the PHP code must have a method for identifying whether a session has already been initiated. isset($_SESSION[variable_name]) can be used to determine if the session has already initialized a particular variable. For example: if (!isset( $_SESSION['quantity'] )) $_SESSION['quantity'] = 0; else $_SESSION['quantity']++;

8 Sessions in PHP – Page 8 of 13CSCI 2910 – Client/Server-Side Programming Implementing a Session (continued) A variable can be removed from a session using the unset() function Example: unset($_SESSION['quantity']); All session variables can be removed by simply re-initializing the $_SESSION array Example: $_SESSION = array();

9 Sessions in PHP – Page 9 of 13CSCI 2910 – Client/Server-Side Programming Implementing a Session (continued) Since the client receives its session ID through a cookie in one of the HTTP header files, it must be sent before any HTML is generated for the client's output. Therefore, session_start() must be executed before any output is generated.

10 Sessions in PHP – Page 10 of 13CSCI 2910 – Client/Server-Side Programming Session Variable Types A session variable can be of any type or object If a session variable is an object, be sure to define the object before running session_start(). If an existing session that uses an object is opened before the object is defined, it will cause problems. The following slide presents an example

11 Sessions in PHP – Page 11 of 13CSCI 2910 – Client/Server-Side Programming <?php session_start(); if(!isset($_SESSION['count'])) $_SESSION['count'] = 0; $_SESSION['count']++; ?> Hello, World! in PHP <?php print "You've visited ".$_SESSION['count']." times."; ?>

12 Sessions in PHP – Page 12 of 13CSCI 2910 – Client/Server-Side Programming Ending a Session If you receive a signal from the client that they are ending the session, e.g., clicking on a link to log out, there is a method you can use to force a session to end. –First, you must open the session so that it is identified as the one to be closed. –Next, you must end the session with the function session_destroy() –Last, use the header function to direct an output to the client.

13 Sessions in PHP – Page 13 of 13CSCI 2910 – Client/Server-Side Programming Ending a Session (continued) <?php // Begin by accessing the session session_start(); // Close the session session_destroy(); // Direct output to the client header("Location: logout.html"); ?>

Download ppt "Sessions in PHP – Page 1 of 13CSCI 2910 – Client/Server-Side Programming CSCI 2910 Client/Server-Side Programming Topic: Sessions in PHP Reading: Williams."

Similar presentations

UFCE8V-20-3 Information Systems Development 3 (SHAPE HK)

UFCE8V-20-3 Information Systems Development 3 (SHAPE HK)
Cookies, Sessions. Server Side Includes You can insert the content of one file into another file before the server executes it, with the require() function.

Cookies, Sessions. Server Side Includes You can insert the content of one file into another file before the server executes it, with the require() function.
PHP and the Web: Session : 4. Predefined variables PHP provides a large number of predefined global variables to any script which it runs also called.

PHP and the Web: Session : 4. Predefined variables PHP provides a large number of predefined global variables to any script which it runs also called.
Chapter 10 Managing State Information Using Sessions.

Chapter 10 Managing State Information Using Sessions.
©2009 Justin C. Klein Keane PHP Code Auditing Session 7 Sessions and Cookies Justin C. Klein Keane

©2009 Justin C. Klein Keane PHP Code Auditing Session 7 Sessions and Cookies Justin C. Klein Keane
Chapter 10 Managing State Information PHP Programming with MySQL.

Chapter 10 Managing State Information PHP Programming with MySQL.
Using Session Control in PHP tMyn1 Using Session Control in PHP HTTP is a stateless protocol, which means that the protocol has no built-in way of maintaining.

Using Session Control in PHP tMyn1 Using Session Control in PHP HTTP is a stateless protocol, which means that the protocol has no built-in way of maintaining.
CSE 154 LECTURE 13: SESSIONS. Expiration / persistent cookies setcookie(name, value, expiration); PHP $expireTime = time() + 60*60*24*7; # 1 week.

CSE 154 LECTURE 13: SESSIONS. Expiration / persistent cookies setcookie("name", "value", expiration); PHP $expireTime = time() + 60*60*24*7; # 1 week.
Php cookies & sessions.

Php cookies & sessions.
Chapter 10 Maintaining State Information Using Cookies.

Chapter 10 Maintaining State Information Using Cookies.
Sys Prog & Scripting - HW Univ1 Systems Programming & Scripting Lecture 15: PHP Introduction.

Sys Prog & Scripting - HW Univ1 Systems Programming & Scripting Lecture 15: PHP Introduction.
Open Source Server Side Scripting ECA 236 Open Source Server Side Scripting Cookies & Sessions.

Open Source Server Side Scripting ECA 236 Open Source Server Side Scripting Cookies & Sessions.
Cookies Set a cookie – setcookie() Extract data from a cookie - $_COOKIE Augment user authentication script with a cookie.

Cookies Set a cookie – setcookie() Extract data from a cookie - $_COOKIE Augment user authentication script with a cookie.
_______________________________________________________________________________________________________________ PHP Bible, 2 nd Edition1  Wiley and the.

_______________________________________________________________________________________________________________ PHP Bible, 2 nd Edition1  Wiley and the.
CHAPTER 12 COOKIES AND SESSIONS. INTRO HTTP is a stateless technology Each page rendered by a browser is unrelated to other pages – even if they are from.

CHAPTER 12 COOKIES AND SESSIONS. INTRO HTTP is a stateless technology Each page rendered by a browser is unrelated to other pages – even if they are from.
CSC 2720 Building Web Applications Cookies, URL-Rewriting, Hidden Fields and Session Management.

CSC 2720 Building Web Applications Cookies, URL-Rewriting, Hidden Fields and Session Management.
CSE 154 LECTURE 12: COOKIES. Including files: include include(filename); PHP include(header.html); include(shared-code.php); PHP inserts the entire.

CSE 154 LECTURE 12: COOKIES. Including files: include include("filename"); PHP include("header.html"); include("shared-code.php"); PHP inserts the entire.
SHOPPING CARTS CHAPTER 19. E-COMMERCE Typically, an e-commerce site will have public pages and admin pages.

SHOPPING CARTS CHAPTER 19. E-COMMERCE Typically, an e-commerce site will have public pages and admin pages.
269200 Web Programming Language Week 7 Dr. Ken Cosh Security, Sessions & Cookies.

Web Programming Language Week 7 Dr. Ken Cosh Security, Sessions & Cookies.
12/3/2012ISC329 Isabelle Bichindaritz1 PHP and MySQL Advanced Features.

12/3/2012ISC329 Isabelle Bichindaritz1 PHP and MySQL Advanced Features.

Similar presentations

Ads by Google