stackoom
  简体   繁体   中英

Proper way to set cookie expire for mac devices

 原文  2016-07-23 05:19:01       php/ facebook/ macos/ cookies

Question

I have login system on one of my projects witch use my own login system and facebook login. Issue is Facebook login doesn't seems to be logging out on mac devices.

My code 

session_start();

if(isset($_COOKIE['checkuserst'])) {
unset($_COOKIE['checkuserst']);
setcookie('checkuserst', '', time() - 3600, '/');
}

unset($_SESSION['username']);

header("Location:index.html");

All windows browsers cookies are expiring except for safari and in mac none of the browser cookies are expiring.

Can someone point me the correct way to fix this.

1 answers

solution1
 1 ACCPTED  2016-07-23 05:44:25

You should not rely on cookie expiration in the browser to determine whether a user is logged out (because it's easy for users to fabricate fraudulent cookies). Store the session expiration in $_SESSION or a database. When you receive a request, even if the cookie is present, first check the matching cookie in server storage and make sure it hasn't expired.

This way whatever happens in the browser (eg browser not deleting expired cookies) will not impact your server-side security

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Proper expire value to delete a cookie Set Session Cookie Expire Set a cookie to never expire set cookie to expire at the end of current day How to set a cookie to expire properly using php set cookie for mac in php PHP cookie proper way to redirect? PHP - cookie is not set when expire date is too far in the future Is this the right way to set a cookie? PHP - correctly set cookie parameters (expire) using header() - not set-cookie()
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM