From the php.net documentation:
session_destroy — Destroys all data registered to a session
session_unset — Free all session variables
My three part question is:
The two functions seem very similar.
What is really the difference between the two?
Both seem to delete all variables registered to a session. Does any of them actually destroy the session itself? If not, how do you accomplish this (destroy the session itself).
Is it correct that neither of the two functions deletes the session cookie at the client?
Description ¶ session_start() creates a session or resumes the current one based on a session identifier passed via a GET or POST request, or passed via a cookie.
Destroying a PHP Session A PHP session can be destroyed by session_destroy() function. This function does not need any argument and a single call can destroy all the session variables. If you want to destroy a single session variable then you can use unset() function to unset a session variable.
In PHP,we utilize session_start() an inbuilt function to start the session .
session_destroy();
is deleting the whole session.
session_unset();
deletes only the variables from session - session still exists. Only data is truncated.
session_unset
just clears the $_SESSION
variable. It’s equivalent to doing:
$_SESSION = array();
So this does only affect the local $_SESSION
variable instance but not the session data in the session storage.
In contrast to that, session_destroy
destroys the session data that is stored in the session storage (e.g. the session file in the file system).
Everything else remains unchanged.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With