stackoom
  简体   繁体   中英

When logging a user out of a website, on the logout page is it nescecary to start the session before destroying it?

 原文  2013-03-07 00:17:01       php/ security/ authentication

Question

In logout.php is all that is needed 

session_destroy();

or should it be 

session_start();
session_destroy();

I'm concerned that if a user directly navigates to this page there may be an error destroying the session if one hadn't already been created. On the other hand would the session_destroy() destroy the session created in the line above?

1 answers

solution1
 1  2013-03-07 00:20:11

You don't need to call session_start() first... session_destroy() will remove a session completely on the server and therefore calling session_start() beforehand may cause extra processing to create a session to only destroy it one line later.

I would advise viewing further details on the man page regarding clearing any associated cookies / session superglobals

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Session not destroying when logging out of online website but works with offline website Destroying session to logout, but user still logged in until page refreshes Trouble logging out / destroying session PHP Session is not destroying after user logout Laravel Auth Logout() + Session Flush() not logging out user Logout button redirects uesr to the same page instead of logging user out Logout is not destroying the session force a specific user to logout in codeigniter with destroying his session Laravel 5 Auth Logout not destroying session Issue on Destroying - Ending Session on Logout
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM