PHP Website

  • I guess, this is an old thread and would be good if I suggest some php session cookie secure issues.

    As PHP belongs to application layer and builds on HTTP cookies to maintain multiple request. For this, it combines custom, specific cookie header with its own session handler class:

    1. SessionHandler implements SessionHandlerInterface , SessionIdInterface {
    2. /* Methods */
    3. public close ( ) : bool
    4. public create_sid ( ) : string
    5. public destroy ( string $id ) : bool
    6. public gc ( int $max_lifetime ) : int|bool
    7. public open ( string $path , string $name ) : bool
    8. public read ( string $id ) : string
    9. public write ( string $id , string $data ) : bool
    10. }