How can we know that a session is started or not?
- 8 Answers
- 13402 Views
- I also Faced
- E-Mail Answers
Answers were Sorted based on User's Feedback
Answer / tushar
if(session_id()=="")
then we can say session is not started
otherwise
yes
| Is This Answer Correct ? | 9 Yes | 0 No |
Answer / sunil
is session_id returns as empty string, then there is no
current session.
| Is This Answer Correct ? | 3 Yes | 0 No |
Answer / sherin
session_id() returns the session id for the current session
or the empty string ("") if there is no current session.
| Is This Answer Correct ? | 2 Yes | 0 No |
Answer / rakesh kumar nautiyal
Generally speaking I agree with what your saying about
needing to know
if a session has been started or not. But I also believe
it has its
place for some user land custom session handlers. Being
able to throw
an exception in a session object's __construct() or __wakeup
() for
various reasons can present a situation that is easily
solved inside
__construct() by:
if(session_has_started()) { // Added function via
patch
session_regenerate_id($newID); // Added $newID via
the patch
$_SESSION = array();
} else {
session_id($newID);
session_start();
}
Say there is an authentication token in the session, the
session needs
to be started so we can access the token. If the token
proves to be
invalid, we need to create a blank session with a new
session ID.
> Also, the concept of session_id_exists is
fundamentally
> broken (think of atomic file creation). That is why
there is
> no such function.
I disagree. If a provided session ID via $_REQUEST(for
arguments sake)
is found not to exist by using the theoretical
session_id_exists().
That would mean the script was given an ID that wasn't
created by PHP,
and the script logic could act accordingly. What am I
overlooking?
> Regarding providing an id to session_regenerate_id: I
have
> seen too many supposedly save session id generators
that I
> would be in favor of adding that kind of overwriting
power.
I agree that PHP should be left to create a unique ID. But
the
functionality currently exists for the user to set their
own ID with
session_id($newID). The user has this ability before a
session is
started. But loses the ability when trying to use
session_regenerate_id() in a similar fashion after the
session has
started. It seems like a contradiction to allow it in one
case and not
the other.
I could try and grok the source to figure it out myself,
but someone
here might know off the top of their head. Is calling
something like
md5(uniqid(rand(), TRUE)) better, worse, or equivalent to
how PHP
creates a unique session ID?
| Is This Answer Correct ? | 1 Yes | 3 No |
Answer / rohit darya ganj
If you want to know that session is started or not so print
out any session variable.
| Is This Answer Correct ? | 1 Yes | 4 No |
What is the tags in PHP is not a valid way to begin and end a PHP code block?
How do I find out the number of parameters passed into function9?
Is it possible to submit a form with a dedicated button?
How to upload a file (may be a .txt or a .doc file) from a php script/file?
What is csrf token and why it is required?
what is PDO?
What does it mean when it says the csrf token is invalid?
What backslash character will match whitespace?
What is in a cookie?
i got 2 year backs in my MCA,i am 28 year guy, presently learning PHP, can i get the job & on facing the interview wht i will answer out for that?? (experience in as a 1.5yr System analyst after graduation)
What does accessing a class via :: means?
What do you use php for?
PHP 
