Reputation: 13
Why session is not destroyed, after i destroy it in my logout.php page?
I have started session (session_start()) in file which is included in all pages. My link for logout.php is in this file, i ll post code for included file later, also code for my logout.php page.
After i logout, its all ok, but if i click more then 2-3 times on my admin button (which should be active only if $_session['user1'] and $_session['pass'] r correct) i proceed to admin.php page (after i destroyed session o.O);
Part of my included file to all pages:
<?php
session_start();
if ((!isset($_SESSION['user1']))&&(!isset($_SESSION['pass1']))) {
echo "<li><a href='login.php'>Admin</a></li>";
}
else {
echo "<li><a href='Admin.php'>Admin</a></li>";
};
?>
logout page:
<?php
session_start();
unset ($_SESSION['user1'],$k);
unset ($_SESSION['pass'],$p);
session_destroy();
header('Location:Naslovna.php');
exit();
?>
Upvotes: 0
Views: 1050
Answers (2)
Reputation: 910
I had this problem recently, solved it with this:
unset($user1,$pass);
session_unset();
session_destroy();
header('Location: ../index.php');
Upvotes: 0
Reputation: 360702
As per the documentation:
session_destroy() destroys all of the data associated with the current session. It does not unset any of the global variables associated with the session, or unset the session cookie. To use the session variables again, session_start() has to be called.
If you want to truly destroy the session, you have to unset the session cookie yourself.
Upvotes: 0
Related Questions
- Why is PHP session_destroy() not working?
- session is not destroyed
- PHP session_destroy() isn't working
- Logout with session_destroy() doesn't work
- Destroy Session Not Working
- Session not destroy after logout in php
- Unable to logout user using session_destroy in PHP?
- session_destroy() not working
- PHP Session is not destroying after user logout
- Logut Session not destroyed