58.9k How to avoid duplicate data in

35.8k How to Make Forgot Password in

35.2k What should be Valid OAuth red

34.7k Check Email Already Exists wit

30.3k Deleting Caches in Codeigniter

27.1k Best 5 Lightweight PHP Framewo

prev 1 2 3 … 361 next

How to save session in databse using php?

about 10 years ago

0
0
Positive Vote
0
Negative Vote
0
Save Favourite
2
0
0
0
170

Comment on it

Saving session in database is best practice for website security. so if we want more security then we need to save session in database.
Here are few steps to save session in database

step 1--> Create a table name as sessionsdata

step 2--> create a function for open database connection

copytext

function _open()
{
    global $_sess_db;
 
    $db_user = $_SERVER['DB_USER'];
    $db_pass = $_SERVER['DB_PASS'];
    $db_host = 'localhost';
 
    if ($_sess_db = mysql_connect($db_host, $db_user, $db_pass))
    {
        return mysql_select_db('sessions', $_sess_db);
    }
 
    return FALSE;
}

function _open()
{
    global $_sess_db;

    $db_user = $_SERVER['DB_USER'];
    $db_pass = $_SERVER['DB_PASS'];
    $db_host = 'localhost';

    if ($_sess_db = mysql_connect($db_host, $db_user, $db_pass))
    {
        return mysql_select_db('sessions', $_sess_db);
    }

    return FALSE;
}

step 3--> Function for close connection

copytext

function _close()
{
    global $_sess_db;
 
    return mysql_close($_sess_db);
}

function _close()
{
    global $_sess_db;

    return mysql_close($_sess_db);
}

Step 4--> Function for read session from database

copytext

function _read($id)
{
    global $_sess_db;
 
    $id = mysql_real_escape_string($id);
 
    $sql = "SELECT data
            FROM   sessionsdata
            WHERE  id = '$id'";
 
    if ($result = mysql_query($sql, $_sess_db))
    {
        if (mysql_num_rows($result))
        {
            $record = mysql_fetch_assoc($result);
 
            return $record['data'];
        }
    }
 
    return '';
}

function _read($id)
{
    global $_sess_db;

    $id = mysql_real_escape_string($id);

    $sql = "SELECT data
            FROM   sessionsdata
            WHERE  id = '$id'";

    if ($result = mysql_query($sql, $_sess_db))
    {
        if (mysql_num_rows($result))
        {
            $record = mysql_fetch_assoc($result);

            return $record['data'];
        }
    }

    return '';
}

Step 5--> write session data to database

copytext

function _write($id, $data)
{   
    global $_sess_db;
 
    $access = time();
 
    $id = mysql_real_escape_string($id);
    $access = mysql_real_escape_string($access);
    $data = mysql_real_escape_string($data);
 
    $sql = "REPLACE 
            INTO    sessionsdata
            VALUES  ('$id', '$access', '$data')";
 
    return mysql_query($sql, $_sess_db);
}

function _write($id, $data)
{   
    global $_sess_db;

    $access = time();

    $id = mysql_real_escape_string($id);
    $access = mysql_real_escape_string($access);
    $data = mysql_real_escape_string($data);

    $sql = "REPLACE 
            INTO    sessionsdata
            VALUES  ('$id', '$access', '$data')";

    return mysql_query($sql, $_sess_db);
}

step 6--> Destroy database

copytext

function _destroy($id)
{
    global $_sess_db;
 
    $id = mysql_real_escape_string($id);
 
    $sql = "DELETE
            FROM   sessionsdata
            WHERE  id = '$id'";
 
    return mysql_query($sql, $_sess_db);
}

function _destroy($id)
{
    global $_sess_db;

    $id = mysql_real_escape_string($id);

    $sql = "DELETE
            FROM   sessionsdata
            WHERE  id = '$id'";

    return mysql_query($sql, $_sess_db);
}

step 7--> Create a _clean function for remove Garbage data

copytext

function _clean($max)
{
    global $_sess_db;
 
    $old = time() - $max;
    $old = mysql_real_escape_string($old);
 
    $sql = "DELETE
            FROM   sessionsdata
            WHERE  access < '$old'";
 
    return mysql_query($sql, $_sess_db);
}

function _clean($max)
{
    global $_sess_db;

    $old = time() - $max;
    $old = mysql_real_escape_string($old);

    $sql = "DELETE
            FROM   sessionsdata
            WHERE  access < '$old'";

    return mysql_query($sql, $_sess_db);
}

Now call your session handler function

copytext

session_set_save_handler('_open',
                         '_close',
                         '_read',
                         '_write',
                         '_destroy',
                         '_clean');

session_set_save_handler('_open',
                         '_close',
                         '_read',
                         '_write',
                         '_destroy',
                         '_clean');

2 Comment(s)

@sumeet.arora

Follow Recommendations Offline Message

about 10 years ago
- 0
- 0
- 0
  Report spam
- 0
- 0
Also can you also paste the the table structure..

@sumeet.arora

Follow Recommendations Offline Message

about 10 years ago
- 0
- 0
- 0
  Report spam
- 0
- 0
Does not it require any specific Settings in PHP.ini

How to save session in databse using php?

2 Comment(s)

Comment on it

Unable to start Java!! Mr. Nerd figure out why..

Positive Votes

Negative Votes

Delete Comment

Post Projects

Manage Company