Session expire

themaxx113

Hi,
I'm trying to destroy a session if you are more than 5 min without doing any useful klick..... but i dont get it! 🙁

Does anybody have such a helpful example to show me how that could work?

Greetings,
MaXx

LordShryku

I usually use an html redirection for this.

<html>
<head>
<?php
if(isset($_SESSION['variable'])) {
?>
  <meta http-equiv="Refresh" content="300 url=logout.php" />
<?php
}
?>
</head>

Then logout.php is nothing more than destroying the session and redirecting them to a page telling them that their session has expired.

<?php
$_SESSION = array();
@session_destroy();
header("Location: /expired.html");
?>

devinemke

you could also run a cron job every five minutes that scans your session dir and deletes files that have a file mod timestamp that is older than 5 minutes.

themaxx113

@
good idea! but it has a little bug. if you close the window and open the same url 4 min. later you're still logged in..... 🙁

i think, i will need to write the time into the database and then i need to check it every time......

BUT I'M STILL LOOKING FORWARD TO GET A BETTER IDEA!!!

😉

Greetings,
MaXx

LordShryku

Originally posted by themaxx113
@
good idea! but it has a little bug. if you close the window and open the same url 4 min. later you're still logged in..... 🙁

Well, that solution is essentially a timeout. So if someone closes the window and opens it up 4 minutes later, it's activity. I don't want to expire them. Now if they close their window and try opening it up an hour later, hopefully you've setup your garbage collection to kill those sessions on their own.