[Resolved] Destroying a specific session

lobobr

Greetings.

I'm storing all the session_id's of my users in a table on a database.

Now I'd like to a PHP script wich is run by cron to destroy session's by a timeout (30 minutes).

So I came up with this:

$qry = "
        SELECT
                SESSION_ID
        FROM
                SESSION_ACTIVITY
        WHERE
                DT = current_date AND
                HR <= current_time - interval '30 minutes'
        ";

$recordSet = $myDB->Execute($qry);

while (!$recordSet->EOF)
{
    $ksid = $recordSet->fields('SESSION_ID');

// Here is the missing part

// Then I'll delete the row from the db

}

In the "Here is the missing part", I'd like to destroy the specific session (identified by the $ksid variable).

But as I saw on PHP docs, session_destroy doesn't accept parameters, so the logical:

session_destroy($ksid);

won't work, right?

So, how can I do this? Please help!

TIA,

tsinka

Hi,

do you store the session data in another table ?

With newer MySQL versions you can joins with DELETE queries so I think you might be able to clean up the table(s) with just one DELETE query.

Thomas

lobobr

I use PostgreSQL.

And even if that could happen (wich it can't) the PHP session itself wouldn't be destroyed, so it's useless.

Thanks,

tsinka

Sorry,

I overread the little word "specific" ...

So you want to clean up sessions that are older than 30 minutes using a cron job.

The problem is that you only can remove all the data of a session with that cron job. You can't tell scripts that use that session data that the session has now been destroyed. There's no "relationship" between the cron job and the scripts possibly still using that session. That scripts just see that all the session data disappeared and have to deal with it.

Using a cron job is not the same as calling session_destroy() from within a script requested by a user.

Thomas

lobobr

Well, actually I've found a workaround:

I use a class that checks a user session and do some stuff. So inside this class I've inserted the code the checks the database to see if the user's session_id is there. If it is not, it destroys the session.

😃

Thanks anyway.

Best regards,