On Fri, 2004-09-03 at 15:27, Dennis Gearon wrote: > I am designing my own 'usr' class that takes care of logins. I need > to know the following to finish it. > ------------------------------------------------------------------- > A/ Does anybody use sessions for users who are not logged into the site, and why?
Yes. Because I allow anonymous users _some_ interaction with my site. > B/ If a user goes from unlogged in, unidentified user to a logged in, identified > user, is the first session canceled and new session started? Depends on your definition of "logged in". My users are logged in when they have $_SESSION['user_id'] set to some integer greater than 0. I can call session_destroy() to kill the whole session or just unset the one variable with unset($_SESSION['user_id']). Either way they will be logged out. I usually follow either method with a header("Location: index.php") call to some main page in the site. > C/ (The reverse), if a user goes from logged in, identified user to a unlogged in, > unidentified user, is the first session canceled and new session started? Only if you call session_destroy(). > D/ How is it possible, using PHP4+ sessions, to cancel a session a page is opened > with, and starting a new session? session_destroy(); -- Greg Donald -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php