Reputation: 25790
How to programmatically recreate php yii session?
From my application view I need to programmatically logout current user and login another one right after that.
I want to login the second user into his own different CHttpSession (with another sessionID and so on). I need it for a security reasons.
How to implement this in Yii framework ?
Code below
$oSession->destroy(); $oSession->open();
doesn't work as expected..
Upvotes: 2
Views: 1000
Answers (2)
Reputation: 174
A possible tricky way (tested):
session_unset();
Yii::app()->user->id = $the_new_id;
When the above code is executed, nothing visible happens on the page so you may want to redirect the browser:
$this->redirect('somewhere');
Upon the next page load, the user with the $the_new_id will be logged in
Upvotes: 1
Reputation: 4334
looks like you are trying to impersonate users:
Create a function in your UserIdentity that would alow you to login as another known user:
protected function logInUser($user) { if($user) { $this->_user = $user; $this->_id=$this->_user->id; $this->setState('name', $this->_user->name); $this->errorCode=self::ERROR_NONE; } }In your controller, call this function to get the UserIdentity object and then use the Yii's CWebUser login
$ui = null; $user = User::model()->findByPk($userId); if($user) { $ui = new UserIdentity($user->email, ""); $ui->logInUser($user); } Yii::app()->user->login($ui, 0);
Remember to protect this controller's action from non authorized users.
Upvotes: 5
Related Questions
- Yii2 set custom session
- How to retrieve the session values in Yii 2
- How to create lifetime session in yii2
- yii2 project create dummy
- Set session in Yii framework
- Yii2 creates new session instead of opening existing
- Yii session management
- Sessions in Yii
- How can i read sessions saved in db with php?
- PHP Session recreate (CLI)