session vars won't go away (PHPLib)

Anon

Configuration: apache, php 4 (mod), mysql

I'm using PHPLib's session support (mainly because it was easier to re-use the auth, perm, and sess classes than to create my own).

My problem is that the session variables don't seem to go away when I want them to. Here's roughly what I'm doing. (Note: this single file contains a form that points back to this page. The session vars are created in one page view, but unregistered in a later view of this same page.)

foo.php:
printf("Is myvar registered? %s",($sess->is_registered("myvar")) ? "YES" : "NO");
if (!$sess->is_registered("myvar))
{
$myvar = "blah";
$sess->register("myvar");
}
// do a bunch of other stuff in this file

unset($myvar); // forgets the global var $myvar
printf("myvar = %s",$myvar); // this is a test
$sess->unregister("myvar"); // forgets the session var $myvar

printf("Is myvar registered? %s",($sess->is_registered("myvar")) ? "YES" : "NO");

The first time the script runs, myvar is not registered. After I unregister myvar at the end of the file, "Is myvar registered?" says NO. But if I were to request foo.php anytime later during this session, it reports "Is myvar registered? YES" at the top of the file.

I'd really really appreciate any help.

Session variables are the cleanest and most "elegant" way for me to do what I need to do here. And I'd really like to get it to work properly.

Thanks,
DLB

Anon

I have had similar problems unregistering variables--in my case, with authorized logons to an intranet. My (inelegant) solution was to register an empty session with the same variable name.

login, authenticate user, then register session $authuser with x number of variables.
if an unauthorized user reaches a restricted area, or if session is expired, redirect to login page--at the top of which I start a session $authuser with no variables. It was the only way I could start with a "clean slate" and prevent access.

I realize this isn't exactly what you're after, but I struggled with the same type of issue.

Anon

I've looked in the forum archives, the articles, and the annotated manual. I've seen a few people write that they have problems using unregister (with PHPLib or otherwise) . . . but never an answers.

Still looking for a good solution. One thing I have not tried is re-assigning $myvar to null. I figure if I can "unregister" the variable, perhaps I can reassign it to get close to the same effect.

Anon

i think since u are using session_unregister("myvars") and unset (myvars)

better use session_destroy();