| Session data in cookies vs database |
[eluser]mradlmaier[/eluser]
Hi All, I am thinking about moving my seesion from cookie storage to database storage. Some questions come to mind: First about the database schema: The user guide states following sql for creating the table: Code: CREATE TABLE IF NOT EXISTS `ci_sessions` (1. If i look at that, I assume that all items of a session (which I access through $this->session->userdata('my_item')) are all stored together in on single database column named userdata. Is that right? 2. What about flashdata? Are they stored in the userdata column too? 3. Having said that, to move my session to database storage, I only have to create that database table and enable database storage in the config.php, and everything else stays the same? Including flashdata? Somebody enlighten me pls, Michael
[eluser]Dam1an[/eluser]
1 yes 2 yes 3 yes When you enable the database for sessions, at the start of every request it will look for a row with that session id, and if it exists will take the row, de-serialize the userdata into an array, which is then used when fetching session data At the end of the request the array 9with any changes) is then serialized and written back Flash data is stores in the userdata field as well (I think it has a new: prefix or something)
[eluser]mradlmaier[/eluser]
OK, thanks, that sounds good to me, any other things to keep in mind? The user guide says the prefix is 'flash_' Michael
[eluser]Dam1an[/eluser]
Ah, I just checked in the session librray, and it appears it uses both lol Code: $new_flashdata_key = $this->flashdata_key.':new:'.$key; // flashdata_key is flashwhich results in flash:new:key or flash:old:key
[eluser]mradlmaier[/eluser]
From analysing the rows which are written to my ci_sessions table, i conclude the following: 1. Each time a logged in user requests a page, a row is created in the ci_sessions table with his user_data, last_activity, user_agent and ip_address and session_id as primary key of the row. I am not 100% sure, triggers the page request itself, or triggers the first time within a request, that particalur session is accessed by calling $this->session->.... 2. When $this->session->sess_destroy() is called the most recent rows' user_data of that users is cleared. 3. When the timeout of a session is reached, that row is removed completely 4. the user_agents' value is only written when the session starts, otherwise it set to 0 That means: To get a list of all currently logged in users, i need to query for all rows which a) dont have the user_agent set to 0 AND b) dont have the user_data cleared Is that correct?
[eluser]sl3dg3hamm3r[/eluser]
Why not simply querying the field last_activity minus e.g. 5 minutes?
[eluser]mradlmaier[/eluser]
[quote author="sl3dg3hamm3r" date="1248723816"]Why not simply querying the field last_activity minus e.g. 5 minutes?[/quote] Because if a user requests several pages in the last 5 mins, there will be several rows of this user in the ci_sessions table. As far as i can tell, the 2 conditions i described before, filter for all distinct logged in users. Maybe the name sessions table is a bit misleading. From what I understand by looking at the table's rows, it stores a row for each single request of all users having a session. So one row does not correspond directly to a user's session, but to one request of each user having a session. Simply put, there may be several rows for one user's session. So you actually can track the path a user takes through your website with the rows stored in this table. And, as all session vars are serialized into a single field userdata, you can not easily query for a user in a WHERE or HAVING clause. BTW, user guide says, there is built-in garbage collection, so after a sessions times out, that session's rows are deleted.
[eluser]sl3dg3hamm3r[/eluser]
[quote author="mradlmaier" date="1248735866"]Because if a user requests several pages in the last 5 mins, there will be several rows of this user in the ci_sessions table.[/quote] I don't know how you end up with several entries for the same session - if you do a session_destroy(), the entry is deleted. If you create and update one, there will be only one entry in the table...
[eluser]mradlmaier[/eluser]
[quote author="sl3dg3hamm3r" date="1248737675"][quote author="mradlmaier" date="1248735866"]Because if a user requests several pages in the last 5 mins, there will be several rows of this user in the ci_sessions table.[/quote] I don't know how you end up with several entries for the same session - if you do a session_destroy(), the entry is deleted. If you create and update one, there will be only one entry in the table...[/quote] I don't know how I end up with several entries for the same session - I agree, this does not seem to be intuitive, I expected a single row for each session, too. But it is the observation i made by testing it. I did not invent the session class... But i tested it again, with interesting results Below is how my session table looks after i switched to database storage and made some requests: Code: DROP TABLE IF EXISTS `usr_web1301_1`.`ci_sessions`;Now, a couple of days later, i looked into the table again, and it now looks very intuitive, like one expects, with one row for each session. Maybe switching to database storage causes some inconsistences in the data the session class creates(the hybrid session class, based on native php sessions, see http://codeigniter.com/wiki/Session_Hybrid/) if the server is not restarted. Seems after having restart the server this behaviour disappeared.... |
| Welcome Guest, Not a member yet? Register Sign In |
MENU
EXTRA MENU
ABOUT US
CodeIgniter is a powerful PHP framework with a very small footprint, built for developers who need a simple and elegant toolkit to create full-featured web applications.
