How long will my session last?

by

In general you can say session.gc_maxlifetime specifies the maximum lifetime since the last change of your session data (not the last time session_start was called!). But PHP’s session handling is a little bit more complicated.

Because the session data is removed by a garbage collector that is only called by session_start with a probability of session.gc_probability devided by session.gc_divisor. The default values are 1 and 100, so the garbage collector is only started in only 1% of all session_start calls. That means even if the the session is already timed out in theory (the session data had been changed more than session.gc_maxlifetime seconds ago), the session data can be used longer than that.

Because of that fact I recommend you to implement your own session timeout mechanism. See my answer to How do I expire a PHP session after 30 minutes? for more details.

More Related Contents:

  1. PHP Session timeout
  2. PHP sessions default timeout [duplicate]
  3. Extending session timeout in PHP via the .htaccess
  4. PHP session lost after redirect
  5. “Cannot send session cache limiter – headers already sent” [duplicate]
  6. How can I get an unknown username given an ID?
  7. Setting Curl’s Timeout in PHP
  8. Keeping session alive with Curl and PHP
  9. How unique is the php session id
  10. cleanup php session files
  11. What is the default lifetime of a session?
  12. PHP sessions timing out too quickly
  13. proper way to logout from a session in PHP
  14. PHP – Session destroy after closing browser
  15. Multiple PHP Sessions
  16. Accessing session from TWIG template
  17. Detect if PHP session exists
  18. Is this a proper way to destroy all session data in php?
  19. What is PHP session_start()
  20. PHP __PHP_Incomplete_Class Object with my $_SESSION data
  21. How do I continue a session from one page to another with PHP
  22. Remotely destroy a session in php (user logs in somewhere else)?
  23. Session hijacking and PHP
  24. Call to undefined function session_register() [duplicate]
  25. Why Session object destruction failed
  26. My Laravel 5.2.10 Sessions wont persist
  27. laravel – Can’t get session in controller constructor
  28. How do I save PHP session data to a database instead of in the file system?
  29. Issues with PHP 5.3 and sessions folder
  30. how to unset cookie in PHP?

Leave a Comment