"John Lim" <[EMAIL PROTECTED]> wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi Andre
>
> Why not simply store the login time as a session variable, and log the
> person
> out after 15 mins?
>
> Regards, John

Maybe I was unclear. The problem is that to allow for 2 hour timeouts I need
to have gc_maxlifetime set to 2 hours, but for 99,9% of all session I don't
need than 15 minutes gc_maxlifetime since they have a cookie lifetime of 15
minutes.

Also, I can't log the user out after 15 minutes (it's better to use
cookie_lifetime for that), I haven't got any idea of where he is, so storing
the login time as a session variable won't let me change the gc_maxlifetime.

André Nęss


>
> André NęSs <[EMAIL PROTECTED]> wrote in message
> [EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> > I find PHP session lacking in one area. In my applications I typically
> want
> > to have a long timeout for adminstrators so that they don't have to log
in
> > all the time. A typical value is 2 hours. For users I prefer 15 minutes,
> > based on the assumption that a user will go in, do his stuff, and leave.
> For
> > this to happen I need to have the gc_maxlifetime set to 2 hours, or risk
> > unpredictable results for the administrators. The problem with this is
of
> > course that garbage collection will run infrequently for the entire
> system,
> > even though most of the sessions expire after 15 minutes. It would
> therefore
> > be nice to have something like "session contexts", where you could have
> > different session settings for each context. Is this possible to
achieve?
> > Anyone else who can see the use of this?
> >
> > Regards.
> > André Nęss
> >
> >
>
>



-- 
PHP Development Mailing List <http://www.php.net/>
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
To contact the list administrators, e-mail: [EMAIL PROTECTED]

Reply via email to