PHP :: Bug #17598 :: no way to detect a session without creating a session

Bug #17598

no way to detect a session without creating a session

Submitted:

2002-06-04 12:40 UTC

Modified:

2002-08-11 01:45 UTC

Votes:	1
Avg. Score:	5.0 ± 0.0
Reproduced:	1 of 1 (100.0%)
Same Version:	1 (100.0%)
Same OS:	0 (0.0%)

From:

adam at adeptsoftware dot com

Assigned:

Status:

Not a bug

Package:

Session related

PHP Version:

4.2.1

OS:

WinXP

Private report:

CVE-ID:

None

View Add Comment Developer Edit

[2002-06-04 12:40 UTC] adam at adeptsoftware dot com

There is no way to detect if a session exists, without creating a session.  This can trigger warnings like this in cookie detectors:

This page wishes to set the cookie
   PHPSESSID="bd977b12c9da97f1ba0b07e4fe25a176"

A page needs to generate differently based on whether a user is "logged in" (a session exists) or just a "visitor".

You shouldn't have to create a session to know if it exists.  I suppose you could manually check cookies & the URL etc but shouldn't there be a function for this?

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports

[2002-06-05 09:00 UTC] postings dot dynweb at hans-spath dot de

// just a untested quick-hack
// if it doesn't work, I hope you get the idea

function session_exists( $name=NULL )
{
   if( $name === NULL )
      $name = ini_get('session.name');

   if( ini_get(session.use_cookies) == 1 )
      return isset($_COOKIE[$name]);
   else
      return isset($_GET[$name]);
}

[2002-08-11 01:45 UTC] kalowsky@php.net

Sure there is, look at the nice patch provided by hans-spath.de!  Marking as bogus, as this isn't a bug.

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2024 The PHP Group All rights reserved.	Last updated: Mon Apr 29 13:01:30 2024 UTC