Testing For Session Expiration

simulant

What is the best way to test for session expiration? I want to display an error message to the user that says the session expired, and then return the user to the login page.

If I'm using the $_SESSION global variable to access session variables, would I just test to see if it successfully returned a value? Like this:

if (!$_SESSION["userid"])
handleExpire();
else
continue();

I didn't see a session function directly related to testing for session expirations...I think this would be nice. Any suggestions??

Thanks,
- TIM

kinadian

All you really need to do is test to see if any variables you've registered with your session are there. For example, if after you create a session, you register $uid and then ask the user for their user id, you would then assign the result to $uid, correct?

Just test for the variable after initiating the session, if the variable has a value, then the session has not expired. If the variable == "" then the session had expired and a new one was created. After that you just use an if statement to direct the user to the proper location (ie the page, or the login form)

--kinadian