Hi, In trunk I added libraries/session_cleanup.lib.php. For the moment it only does unset($_SESSION['navi_limit_offset']);
and is called at logout time for http and cookie auth_type. The idea is to get rid of choices made by the previous user.
If you remember of other variables set in the session as a result of a choice from a user, please add them there.
Or should we just destroy the session at logout time? I was not brave enough to test this...
Marc
Hi,
On 6/23/07, Marc Delisle Marc.Delisle@cegepsherbrooke.qc.ca wrote:
Or should we just destroy the session at logout time? I was not brave enough to test this...
If I understand your intentions, destroying the session will suffice. You may need to unset the session ID as indicated in the official notes at http://us.php.net/session_destroy, but to remove user settings like navi_limit_offset it should due well enough to simply call session_destroy. I've successfully used session_destroy to blow out user settings and it seems that is also what you're trying to do here.
Regards, ipb
Isaac Bennetch a écrit :
Hi,
On 6/23/07, Marc Delisle Marc.Delisle@cegepsherbrooke.qc.ca wrote:
Or should we just destroy the session at logout time? I was not brave enough to test this...
If I understand your intentions, destroying the session will suffice. You may need to unset the session ID as indicated in the official notes at http://us.php.net/session_destroy, but to remove user settings like navi_limit_offset it should due well enough to simply call session_destroy. I've successfully used session_destroy to blow out user settings and it seems that is also what you're trying to do here.
Regards, ipb
Done, thanks!
Marc
-
Isaac Bennetch -
Marc Delisle