About Page Expiration

Anon

Hi,

I tried to expire a session by using the setcookie() function and passing the time parameter during which I want the cookies to be active. The problem is that the cookies are still active (active until they reach their expiration time)even if the browser is closed ( a case when someone forgets to sign out but closes the browser) and you can see the contents and access information just by re-visiting the link.

Is there any way by which I can expire the session. At the same time making sure that the session cookies get expired as soon as the browser is closed even if someone forgets to sign out.

Is there any way I can ask the user that the session is about to time out and whether he/she wish to still continue? If the user says "Yes" the session should not time out.

Your help is appreciated.

Greg

Anon

Timing out your cookies at a specific time, and also when the browser closes can be done by using 2 cookies. One that has a timed ability and is thus stored on the users sysetm, and one that is just held in the memory of the browser. This will let you check each one. If the non-times cookie exists then check the time of the other cookie.

I can't remember the exact syntax for creating each of these but I believe that if you don't set an expiration time then the cookie will exist as long as the browser is open.

jolly

look at using session cookies
$isactive=true;
session_start();
session_register("isactive");
if (session_is_registered("isactive"))
{
echo "still here then";
}
else
{
do something??
}

or check if $isactive with isset function.
don't think you could alert the user when there session is about to expire..not in php anyway..dhtml supports timelines but don't know if it could cope with what you want