How can PHP developers handle situations where users leave the site without logging out, such as closing the browser?

When users leave the site without logging out, it can lead to security risks as their session remains active. To handle this situation, PHP developers can implement a session timeout mechanism that automatically logs out users after a certain period of inactivity. This can be achieved by setting a session timeout value and periodically checking the last activity time of the user.

// Set session timeout value (in seconds)
$session_timeout = 1800; // 30 minutes

// Check if user&#039;s last activity time is older than session timeout
if (isset($_SESSION[&#039;last_activity&#039;]) &amp;&amp; (time() - $_SESSION[&#039;last_activity&#039;] &gt; $session_timeout)) {
    // Log out user
    session_unset();
    session_destroy();
    // Redirect to login page
    header(&quot;Location: login.php&quot;);
    exit;
}

// Update user&#039;s last activity time
$_SESSION[&#039;last_activity&#039;] = time();

Keywords

PHP session management cookies browser events logout functionality

How can PHP developers handle situations where users leave the site without logging out, such as closing the browser?

Keywords

Related Questions