FireFox failing to destroy PHP SESSION on browser close.
Sessions are supposed to be destroyed when the browser application is closed. Users assume that if they close the browser, the next person to open it will not be able to view web applications they may have authenticated to. A sample php web page is included in 'Troubleshooting' section. To duplicate the problem publish the example code, load the page in FireFox. On first load, session is reported as not there. On reload, it's reported as intact. Then close the browser (choose 'Save & Close'). Open FireFox again. You will see the session has been maintained through a browser restart. This may be handy, but is rather dangerous, as many web applications assume that after the browser is closed, sessionID's are destroyed.
This happened
Every time Firefox opened
所有回复 (5)
seems my sample code didn't make it into the post. I'll try to add as an image.
hi,we have the same problem,pls tell us how to figure it out,thank you.
Hi,
i discovered if you enable Firefox to remember tabs from last time so the session cookie won't be deleted on closing Firefox.
Configure Firefox to don't remember tabs from last time. Firefox will delete your session cookie and starts up with no opened tabs.
Hope it helps.
But the problem is that you don't want to mess the default configuration of Firefox by notifying your user to configure some part of the browser just to make things smooth. Extra configuration sometimes intimidates/dampens a not-so-tetchy individual. We want a solution that is less hassle and automatic :D
@ jc_coki Post your question in a new thread. this thread is a Year old so there are high chances that your question might not be attended