What best practices should be followed when handling session management in PHP applications to prevent loss of session data or security vulnerabilities?

When handling session management in PHP applications, it is important to use secure session handling techniques to prevent loss of session data or security vulnerabilities. This includes using secure cookies, setting appropriate session configuration options, and validating session data to prevent session fixation attacks.

// Start secure session
session_set_cookie_params([
    'lifetime' => 0,
    'path' => '/',
    'domain' => $_SERVER['HTTP_HOST'],
    'secure' => true,
    'httponly' => true,
    'samesite' => 'Strict'
]);
session_start();