Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Session cookie versus other kinds of cookies

Tags:

php

cookies

session-cookies

In Internet Explorer, for example, you can enable first party cookies, third party cookies and allow session cookies.

I know the difference between:

  • a first party cookie and a third party cookie, and
  • a PHP session and a cookie.

But what is a session cookie? And how can you set one using PHP?

For example, you cannot log into Facebook without cookies enabled. However, if you allow session cookies, you can log into Facebook.

So, how does a session cookie differ from other kinds of cookies?

like image 285
jon Avatar asked Dec 17 '11 20:12

jon

4 Answers

A cookie has a lifetime, after which it will expire (As denoted by the Expires directive). If you don't set a timeout, the browser will expire the cookie when you close the browser. This is called a session cookie.

These kind of cookies are often used to track a users current session state on the server side (E.g. php's sessions), but there is not a strong relation between the two uses of the word "session"

like image 50
troelskn Avatar answered Oct 25 '22 16:10

troelskn

A session cookie holds the unique identifier that PHP generates when session_start() is called, so that each client can be associated with a session, and no two sessions can have the same ID at the same time.

The session cookie is usually destroyed when the browser window is closed, or can be done manually using session_destroy().

like image 24
Bojangles Avatar answered Oct 25 '22 17:10

Bojangles

From Wikipedia:

Older definition: (2011-12-17)

A session cookie is created when no Expires directive is provided when the cookie is created.

Latest definition:

A session cookie, also known as an in-memory cookie or transient cookie, exists only in temporary memory while the user navigates the website.[18] Web browsers normally delete session cookies when the user closes the browser.[19] Unlike other cookies, session cookies do not have an expiration date assigned to them, which is how the browser knows to treat them as session cookies.

like image 27
fge Avatar answered Oct 25 '22 18:10

fge

In PHP, when you use session_start() it creates a session, this will create a session cookie in the client browser, PHP needs the client to send this info back with each request so that PHP can tell the session ID.

like image 35
Drahcir Avatar answered Oct 25 '22 16:10

Drahcir
Sign in to Comment

Related questions

How long can a URL query argument be?
How to access an argument of the "parent" function?
Extraordinarily poor performance from MongoDB in write intensive application [closed]
Using an Array as the Key for an Array in PHP
oci_bind_by_name and to_date PHP/OCI/Oracle
Profiling slow Zend Framework MVC setup
Is there a way to make PhpStorm's autocomplete "go deeper"?
HOW to unit test session variables in PHP?
Benchmarking Performance of node.js (cluster) with mysql pools : Lighttpd + PHP?
Using OpenGraph with PHP (cUrl requests for actions)
How to correctly close an Entity Manager in doctrine
How can I do member registration confirmation?
PHP cURL is not loaded on modifying php.ini
Why no PHP error on call to undefined function?
Drupal 7 how to render custom field
PHP Annotation Framework
Converting Session $data Into An Array?
How do I work with high precision decimals in PHP
PHP MySQL Select ID from one table and information from another table
Symfony2: accessing variables defined in config.yml and config_*.yml

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!