5
Thank you for the replies. I'll work with the session db entries then and not bother about cookies, as you have suggested.
I was really just trying to work out the logical flow of events, I guess you could call it. Like, what exactly happens when a user visits the site. As I understand it, an anonymous user would have a cookie set immediately which contains the sessionID, and a session entry is also created in the db for that user, containing no sess_data values. When the user logs on, the db session entry is updated to include user info as sess_data. When they logout the session entry is deleted.
I still have some questions though, such as:
- When an anonymous user moves on, how is the session entry removed from the db? Or if a registered user closes the browser without logging out?
- If a user has cookies disabled can they view the site?
- Why is a cookie used to store the sessionId, when it is immediately stored in the db anyway?
Sorry for all the questons, I just like fully understanding the system I work with.
Rowd