What is the recommended approach for destroying PHP sessions for users who have been inactive for 30 minutes, considering the possibility of abrupt session termination?

The recommended approach for destroying PHP sessions for inactive users after 30 minutes is to set a session timeout value in the php.ini file or using session.gc_maxlifetime. To forcefully destroy the session after the timeout, you can implement a session check on each page load and compare the last activity time with the current time. If the user has been inactive for more than 30 minutes, destroy the session using session_destroy().

// Start the session
session_start();

// Check if session is active
if(isset($_SESSION[&#039;last_activity&#039;]) &amp;&amp; (time() - $_SESSION[&#039;last_activity&#039;] &gt; 1800)) {
    // If user has been inactive for 30 minutes, destroy the session
    session_unset();
    session_destroy();
}

// Update last activity time
$_SESSION[&#039;last_activity&#039;] = time();

Keywords

PHP session timeout session_destroy session.gc_maxlifetime

What is the recommended approach for destroying PHP sessions for users who have been inactive for 30 minutes, considering the possibility of abrupt session termination?

Keywords

Related Questions