Reputation: 8268
Managing multiple users in php
I am a newbie to php.
I just learned that you can create a session variable for a user after his login such as
$_SESSION['id']=****some value(say 3)******;
and this session variable is maintained as long as he doesn't log out(i.e. you clear this session variable using session_destroy).
Now , I have a confusion that if another user logs in then won't this id variable be overwritten thus logging the previous user out?
If this is true ,then what can I do to resolve it?
Upvotes: 0
Views: 243
Answers (2)
Reputation: 360672
PHP sessions are tied to a user by a unique (random) ID string, generated the first time you invoke session_start() for a user. That ID is stored in the client browser as a cookie (or possibly via hidden form fields/query parameters).
Even though $_SESSION is used throughout the code, the CONTENTS of that $_SESSION array are tied to a particular user via that ID string. That means if I hit your site, $_SESSION will contain my details. If you hit your site, $_SESSION will contain your details.
There should be no practical way for my details to "leak" in your session, or vice versa. Destroying my session will not destroy yours, because yours is a completely different session, with a different ID.
Upvotes: 1
Reputation: 19879
All sessions are tied to a unique session ID. This is typically set inside the user's cookie.
Upvotes: 0
Related Questions
- creating a user management using php mysql
- PHP & mySQL - Multiple Users Application Approach
- How to configure phpMyAdmin for multiple users - each with access to their database only
- How to handle mutiple users in mysql database
- Updating many different users in dreamweaver and phpmyadmin
- Handling multiple users using mysql
- phpmyadmin multiple accounts for one database
- Managing Logged in users
- Access control for multiple users in a web application
- php/mysql user management