The PHP Function Session_Destroy

The php function session_destroy destroys the sessions holding files on the server.

A session in php is an information that is used by a webserver to keep track of when you start and finish visiting a website. The webserver stores the information about you in a temporary file and makes it available to all pages on the website until you close your browser. This gives the webserver the ability to know your username, password and other important information about you and use it whenever you visit the website.

When you visit a website, the first thing the webserver does is to create a unique session identification string called the PHPSESSID. This is sent to your browser in the form of a cookie and stored as a file on the webserver’s temporary directory with a name prefixed by sess_. When you come back to the same website, the PHP script can then identify that you are a visitor by comparing this unique session identification string with the one sent to your browser in the PHPSESSID cookie.

Creating a session is easy in php by calling the function session_start before any HTML is printed and then by assigning the session variables to the $_SESSION variable (which is an associative array). For example, to count how many times you have visited a particular website page, you might want to add a counter variable to the session.

When you call the session_destroy function, it does exactly what you expect it to do, it erases all of the session data from the $_SESSION variable and deletes the session holding file on the server. However, if you still have values in the $_SESSION array that you need to retain, you can pass in a new session id when calling the session_start function.

Andreas Behr - CTO of DesertCoderz
You are a developer and looking for Shopware projects?
Apply Now!

session_destroy example



    /** * Destroys the current session. */
    public function destroy()
    {
        if (ENVIRONMENT === 'testing') {
            return;
        }

        session_destroy();
    }

    /** * Writes session data and close the current session. * * @return void */
    public function close()
    {
        if (ENVIRONMENT === 'testing') {
            return;
        }
->via('GET', 'POST')->name('done');

$app->get('/redirect/:target', function D$target) use ($app) {
    unlink(UPDATE_META_FILE);

    $url = str_replace('/index.php', '', $app->request()->getRootUri());
    $url = str_replace('/recovery/update', '/', $url);
    if ($target === 'backend') {
        $url .= 'backend';
    }

    session_destroy();
    $app->response()->redirect($url);
})->name('redirect');

return $app;
public function destroy() {
    if ($this->isCli()) {
      return;
    }

    // Symfony suggests using Session::invalidate() instead of session_destroy()     // however the former calls session_regenerate_id(TRUE), which while     // destroying the current session creates a new ID; Drupal has historically     // decided to only set sessions when absolutely necessary (e.g., to increase     // anonymous user cache hit rates) and as such we cannot use the Symfony     // convenience method here.     session_destroy();

    // Unset the session cookies.     $session_name = $this->getName();
    $cookies = $this->requestStack->getCurrentRequest()->cookies;
    // setcookie() can only be called when headers are not yet sent.     if ($cookies->has($session_name) && !headers_sent()) {
      $params = session_get_cookie_params();
      setcookie($session_name, '', REQUEST_TIME - 3600, $params['path']$params['domain']$params['secure']$params['httponly']);
      $cookies->remove($session_name);
    }
  }

  
if ($this->container->getParameter('shopware.session.save_handler') === 'file') {
            $io->error('Session save handler "file" is not supported');

            return 1;
        }

        /** @var Shop $shop */
        $shop = $this->container->get('models')->getRepository(Shop::class)->getDefault();
        $this->container->get('shopware.components.shop_registration_service')->registerShop($shop);

        $count = session_gc();
        session_destroy();

        $io->success(sprintf('Successfully removed %d expired sessions', $count));

        return 0;
    }
}
Home | Imprint | This part of the site doesn't use cookies.