session_destroy（）比我需要的更早执行

So i am having code like this:

$_SESSION['message'] = "Some Message";
$MSG = $_SESSION['message'];
header('location: ../Pages/Error.php');
echo "<script type='text/javascript'>alert('$MSG');</script>"; //It has text here
die(); //i set this only for testing purpose
session_destroy();
die();

As you can see up there i have 2 die() - first is for this test purpose.

So when code is WITH that first die() and echo() my ../Pages/Error.php which uses $_SESSION['message'] display that message normally since inside Error.php file and alert(which is also for testing purpose) but when i remove those two for some reason sesion_destroy(); runs faster than header() function and id destroys my $_SESSION['message'] so my Error.php shows empty message.

Code without testing parts:

$_SESSION['message'] = "Some Message";
$MSG = $_SESSION['message'];
header('location: ../Pages/Error.php');
session_destroy();
die();

Could someone explain me why this happens?

写回答
好问题 0 提建议
追加酬金
关注问题
分享
邀请回答
编辑收藏删除结题
收藏举报

2条回答默认最新

关注

码龄粉丝数原力等级 --

被采纳

被点赞

采纳率
dougan4884 2018-07-24 22:24
关注
This is what happens (times are just for example). Notice that this ISN'T automatically what might happen.

1 $_SESSION['message'] = "Some Message"; 2 $MSG = $_SESSION['message']; 3 header('location: ../Pages/Error.php'); 4 echo "<script type='text/javascript'>alert('$MSG');</script>"; //It has text here 5 You do not have buffering, so header and echo go out to the browser. 6 session_destroy(); 8 The browser receives the Location header 7 The server destroys the session file. 9 The browser requests the page 10 The server receives the request 11 The server tries to load the session file. Duh! It's not there!

It could go this slightly different other way:

4 echo "<script type='text/javascript'>alert('$MSG');</script>"; //It has text here 5 You have buffering, so nothing gets output. 6 session_destroy(); 7 The server destroys the session file. 8 The scripts exits, the buffer is flushed 9 The browser receives the Location header 10 The browser requests the page 11 The server receives the request 12 The server tries to load the session file. Duh! It's not there!

It could go (on some systems) in a more disastrous way, with the session_destroy and the session_start of the second script running into each other so that the second script reads a damaged session and chokes (this should not happen thanks to locking; but locking has its own drawbacks, see below).

A more interesting thing could happen if your first script does not die, but issues a Location header and keeps working. Data in the session will not be stored until the script terminates, so if the second script gets launched, it will find a non-updated session. But if you activate buffering, the Location will be sent at the end, and the second script will work. So the buffering apparently "solves" what is really a race problem.

Session impact on performances

An even more interesting thing happens on those systems where read/write access to the session file is arbitrated through locking (as it should, since "race conditions" are BAD, as seen above), and you have transparent sessions, so a lot of requests to your framework - even those that need save no session data, maybe needn't even read it - end up piling up one behind the other because they can't run in parallel as long as they're semaphorized by the session file FS lock.

You can easily diagnose this behaviour using Chrome or Firefox Web Tools, seeing as e.g. AJAX calls start asynchronously, but the actual data delivery is serialized:

-----SXXXXXXXX---------- --------SwwwwwwwwwXXX--- -----SwwwwwXXXXX-------- -------SwwwwwXXXXX------ --------SwwwwwwXXX------ |<------------>|

In that case, adding "session_write_close()" immediately after session_start(), or anyway as soon as possible (in the class constructor for some frameworks) for those files that might need to read the session, but do not change it, will appear to magically speed up your application (the same happens removing any unneeded session_start()'s, but the framework might make this complex to achieve):

-----SXXXXXXXX--- --------SwwXXX--- -----SwwXXXXX---- -------SwXXXXX--- --------SwXXX---- |<----->| "perceived" user time goes down a good 40%
本回答被题主选为最佳回答 , 对您是否有帮助呢?

解决无用
评论打赏
分享
举报

评论

按下Enter换行，Ctrl+Enter发表内容

查看更多回答(1条)

报告相同问题？

关注问题

session_destroy（）比我需要的更早执行 php
2018-07-24 20:55

回答 2 已采纳 This is what happens (times are just for example). Notice that this ISN'T automatically what might
session_destroy无法破坏会话php php
2017-06-01 11:16

回答 4 已采纳 Just use this: $_SESSION = array(); session_destroy();
Session_start不起作用或Session_destroy不起作用？ php
2014-02-08 11:22

回答 2 已采纳 However, why can I store a session without session_start() function? Because it's just a usua
PHP会话技术(cookie与session)详解
2021-07-26 01:47

耶瞳的博客一：会话技术初步认识 ...会话技术就是通过HTTP协议想办法让服务器能够识别来自同一个浏览器的多次请求，从而方便浏览器(用户)在访问同一个网站的多次操作中，能够持续进行而不需要进行额外的身份验证。会
session_destroy（）+ session_start（）不在标题重定向之后 php
2014-06-14 13:19

回答 1 已采纳 You should use this first: session_start(); // Starts a new or resumes an existing session Then
为什么`session_destroy（）`在PHP中不起作用？ php
2012-04-28 06:59

回答 2 已采纳 For me, only the following combination works perfectly to destroy a session completely: session_d
为什么需要session_ destroy（）？ php
2012-03-02 18:49

回答 1 已采纳 session_destroy() ends the whole session, meaning it will be removed from PHP's session storage an
关于php开发中session的优化
2014-05-05 11:09

shhider的博客问题：如果要大量的session，如何提高
session_write_close（）：无法使用用户定义的保存处理程序写入会话数据。 PHP 7.3.1 php
2019-08-20 03:05

回答 1 已采纳 I don't see a reason why you need to set a shutdown handler. Sessions are automatically saved when
php session_start（）忽略已创建的会话 php
2017-01-05 19:46

回答 1 已采纳 My bad, forgot to add COOKIE to the variables_order directive: variables_order = "GPCS" So that
警告：session_destroy（）：尝试销毁未初始化的会话 php
2013-08-12 13:49

回答 6 已采纳 You have to call the function mentioned below at the top your logout function in the logout class.
php 5.3 session,「Laravel 5.3 中文文档」HTTP 层 – Session
2021-04-18 16:10

weixin_39809175的博客简介由于 HTTP 驱动的应用是无状态的，session 提供了一种在多个请求中保存用户信息的...配置Session 配置文件存储在 config/session.php。记得查看一下该配置文件中对你可用的选项。默认情况下，Laravel 使用 file ...
session_regenerate_id和安全属性 php
2018-11-06 13:04

回答 2 已采纳 In your local folder PHP.ini settings (typically called user.ini and found in your root HTML direc
php记住表单数据cookie,【PHP基础】cookies和session
2021-03-19 09:31

weixin_39864738的博客 1.Cookiescookie 常用于识别用户。...通过 PHP，您能够创建并取回 cookie 的值。1.1、如何创建 cookie？setcookie() 函数用于设置 cookie。注释：setcookie() 函数必须位于标签之前。语法：setcookie(name,valu...
PHP 基础
2020-12-24 10:03

笨小孩@GF 知行合一的博客 PHP原始为Personal Home Page的缩写，已经正式更名为 "PHP: Hypertext Preprocessor"。自20世纪90年代国内互联网开始发展到现在，互联网信息几乎覆盖了我们日常活动所有知识范畴，并逐渐成为我们生活、学习、工作中...
php学习笔记
2022-01-16 14:34

七月24的博客 1、PHP框架 <?php //这是PHP程序代码 ?> 2、变量 (1)命名规则变量以 $ 符号开始，后面跟着变量的名称变量名必须以字母或者下划线字符开始变量名只能包含字母数字字符以及下划线(A-z、0-9 和 _ ) 变量名不能...
教你如何使用php session
2017-03-31 17:21

weixin_34347651的博客打个比方：在河南时，我常到一家熟食店买馋嘴鸭，该店老板为了促进销售，特发布“每购满10只即可免费赠送一只”的优惠措施。除了家里有什么红白喜事要飨客之外，应该不会有人一次性购买10只烤鸭吧？所以老板得想个...
【PHP基础】cookies和session
2018-09-22 17:35

weixin_34409357的博客 1.Cookies cookie 常用于识别用户。...通过 PHP，您能够创建并取回 cookie 的值。 1.1、如何创建 cookie？ setcookie() 函数用于设置 cookie。注释：setcookie() 函数必须位于 <html> 标签之前。 ...
php试卷A高质量含答案,php试卷A高质量含答案
2021-03-10 21:49

geoffreyhinton的博客请仔细阅读文档，确保文档完整性，对于不预览、不比对内容而直接下载带来的问题本站不予受理。2.下载的文档，不会出现我们的网址水印。3、该文档所得收入(下载+内容+预览)归上传者、原创作者；如果您是本文档原作者...
没有解决我的问题, 去提问

悬赏问题

¥15 CST仿真别人的模型结果仿真结果S参数完全不对
¥15 误删注册表文件致win10无法开启
¥15 请问在阿里云服务器中怎么利用数据库制作网站
¥60 ESP32怎么烧录自启动程序
¥50 html2canvas超出滚动条不显示
¥15 java业务性能问题求解(sql，业务设计相关)
¥15 52810 尾椎c三个a 写蓝牙地址
¥15 elmos524.33 eeprom的读写问题
¥15 用ADS设计一款的射频功率放大器
¥15 怎么求交点连线的理论解？

session_destroy（）比我需要的更早执行

2条回答 默认 最新

Session impact on performances

悬赏问题

2条回答默认最新