How to use php to set up a session with strict expiration time

1.php session validity period

php’s sessiondefault validity period is 1440 seconds(24 minutes) , if the client does not refresh for more than 24 minutes, the current session will be recycled and invalid.
When the user closes the browser, the session ends and the session will also become invalid.

You can modify session.gc_maxlifetime of php.ini to set the life cycle of the session, but there is no guarantee that the session information will be deleted immediately after this time is exceeded. Because GC is started based on probability, it may not be started for a long time. Then a large number of sessions are still valid after exceeding session.gc_maxlifetime.

2.session.gc_maxlifetime,session.gc_probability,session.gc_pisor description

session.gc_maxlifetime = 30 means when the session file is in 30 seconds If it is not accessed later, it is considered an expired session and is waiting for GC recycling.

The probability of GC process call is calculated through session.gc_probability/session.gc_pisor, and session.gc_pisor defaults to 1000,
If session.gc_probability = 1000, then The GC process will be called every time session_start() is executed to perform recycling.

Increasing the probability of session.gc_probability/session.gc_pisor will help, but it will have a serious impact on performance.

3. Strictly control the session expiration method

1. Use memcache/redis to save the session and set the expiration time, because memcache/redis The recycling mechanism is not based on probability and can ensure that the session will become invalid after it expires.

2. Only use PHP to implement it, create a session class, and write the expiration time when the session is written. When reading, determine whether it has expired based on the expiration time.

time()){                return $_SESSION[$name]['data'];
            }else{
                self::clear($name);
            }
        }        return false;
    }    /**
     * 清除session
     * @param  String  $name  session name
     */
    private static function clear($name){
        unset($_SESSION[$name]);
    }
}
?>

demo:

This article explains how to use PHP to set up a session that strictly controls the expiration time. Please pay attention to the PHP Chinese website for related content.

Related recommendations:

About the usage instructions of the mysql timestamp formatting function from_unixtime

About the mysql functions concat and group_concat Instructions for use

Explanation on how to deal with mysql innodb startup failure and unable to restart

php Chinese network learning topic：php session (including pictures, videos, cases)

The above is the detailed content of How to use php to set up a session with strict expiration time. For more information, please follow other related articles on the PHP Chinese website!