Using session_start in PHP: Basics, Lifecycle Control, and Destruction

Session management is a crucial part of web development, allowing servers to share data across pages. PHP provides a powerful session mechanism using the session_start function.

1. Basic usage of session_start

The session_start function must be called before any session data is used. Its syntax is simply session_start();. It checks whether a session already exists; if not, it creates a new one, otherwise it resumes the existing session. After calling it, the $_SESSION superglobal can be used to store and retrieve data.

<?php
session_start();
$_SESSION["username"] = "John";
?>

The above code creates a session variable username with the value "John". Other pages can access it via $_SESSION["username"].

2. Controlling the session lifetime

By default, a session expires when the browser is closed, but you can set a custom lifetime with session_set_cookie_params. The following example sets the session cookie to expire after one hour (3600 seconds).

<?php
// Set session lifetime to 1 hour
session_set_cookie_params(3600);
session_start();

// Store username in session
$_SESSION["username"] = "John";
?>

This makes the session automatically expire after one hour of inactivity.

3. Destroying a session

To end a session immediately and free resources, call session_destroy. Example:

<?php
// Start session
session_start();

// Destroy session
session_destroy();
?>

Note that session_destroy does not delete session data instantly; the data remains on the server until the garbage collector removes it.

Conclusion

Proper use of session_start allows easy session handling in PHP. This article covered the basic usage, lifetime control, and destruction of sessions, providing practical tips for PHP session management.