php session_destroy()和session_unset()区别

作者:袖梨 2022-11-14

session_unset()

You should know that on recent PHP only the first one of these functions works correctly. And if you use the other two, var_dump will print you the result you expected (session cleaned up), but the session file on the server won't be cleaned up. So use the first one.

代码如下 复制代码

function session_clean1($logout=false)
{
$v=array();
foreach($_SESSION as $x=>$y)
if($x!="redirector"&&($x!="user"||$logout))
$v[]=$x;

foreach($v as $x)
unset($_SESSION[$x]);
return;
}

function session_clean2($logout=false)
{
foreach($_SESSION as $x=>$y)
if($x!="redirector"&&($x!="user"||$logout))
unset($_SESSION[$x]);
return;
}

function session_clean3($logout=false)
{
$s=($logout||!isset($_SESSION["user"]))?array():
array("user"=>$_SESSION["user"]);
if(isset($_SESSION["redirector"]))
$s["redirector"]=$_SESSION["redirector"];
$_SESSION=$s;
}

?>

On previous php (<<5.1.4) releases at least the third one worked correctly.

释放当前在内存中已经创建的所有$_SESSION变量,但不删除session文件以及不释放对应的session id

session_destroy()

删除当前用户对应的session文件以及释放session id,内存中的$_SESSION变量内容依然保留

因此,释放用户的session所有资源,需要顺序执行如下代码:

PHP代码

代码如下 复制代码

// Initialize the session.
// If you are using session_name("something"), don't forget it now!
session_start();

// Unset all of the session variables.
$_SESSION = array();

// If it's desired to kill the session, also delete the session cookie.
// Note: This will destroy the session, and not just the session data!
if (ini_get("session.use_cookies")) {
$params = session_get_cookie_params();
setcookie(session_name(), '', time() - 42000,
$params["path"], $params["domain"],
$params["secure"], $params["httponly"]
);
}

// Finally, destroy the session.
session_destroy();
?>

相关文章

精彩推荐