What are the best practices for setting session variables in PHP for language selection on a website?
When setting session variables in PHP for language selection on a website, it is important to validate and sanitize user input to prevent security risks such as injection attacks. Additionally, it is recommended to store language options in an array or database to easily manage and update them. Finally, make sure to check if the selected language is supported before setting it in the session variable.
<?php
session_start();
$languages = ['en', 'es', 'fr']; // Supported languages
if(isset($_GET['lang']) && in_array($_GET['lang'], $languages)) {
$_SESSION['lang'] = $_GET['lang'];
} else {
$_SESSION['lang'] = 'en'; // Default language
}
?>