help! php sessions (php.ini)

bryson

I'm having problems creating a php session idle timeout. I want the session to be destroyed after 30min idle. I can't seem to setup php.ini to do this. thanks

bryson

So i have this in all my pages...

<?php
session_start();

if (!isset($usr)) {
$logon_msg = "Your session has expired, please log back in";
echo "<SCRIPT>location.href='entrance.php?logon_msg=$logon_msg'</SCRIPT>";
}

So... if $usr isn't set you have no session and you're booted. The code works cause if I try to just go to a page without loggin in i get booted... So we know this code works... the session just isn't being destroyed ever.

here's my php.ini for the session stuff

session.auto_start = 1
session.save_path = /windows/temp
session.cookie_lifetime = 0
session.gc_probability = 1
session.gc_divisor = 100
session.gc_maxlifetime = 126

bryson

[Session]
session.save_handler = files
session.save_path = /windows/temp
session.use_cookies = 1
session.use_only_cookies = 0
session.name = PHPSESSID
session.auto_start = 1
session.cookie_lifetime = 0
session.cookie_path = /
session.cookie_domain =
session.serialize_handler = php
session.gc_probability = 1
session.gc_divisor = 100
session.gc_maxlifetime = 10
session.bug_compat_42 = 1
session.bug_compat_warn = 1
session.referer_check =
session.entropy_length = 0
session.entropy_file =
;session.entropy_length = 16
;session.entropy_file = /dev/urandom
session.cache_limiter = nocache
session.cache_expire = 180
session.use_trans_sid = 1

bryson

these seem to be the parameters that matter.....
it's not lasting 30 minutes tho... It doesn't seem to be an IDLE timeout either... it just seems to be a regular counter?

session.use_cookies = 1
session.auto_start = 1
session.cookie_lifetime = 30
session.gc_probability = 1
session.gc_divisor = 100
session.gc_maxlifetime = 1440