Uh oh!
There was an error while loading.Please reload this page.
- Notifications
You must be signed in to change notification settings - Fork5.3k
Added a short cookbook about avoiding the automatic start of the sessions#4661
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to ourterms of service andprivacy statement. We’ll occasionally send you account related emails.
Already on GitHub?Sign in to your account
Uh oh!
There was an error while loading.Please reload this page.
Changes fromall commits
99781f802127797dd3945bbba47aFile filter
Filter by extension
Conversations
Uh oh!
There was an error while loading.Please reload this page.
Jump to
Uh oh!
There was an error while loading.Please reload this page.
Diff view
Diff view
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,38 @@ | ||
| .. index:: | ||
| single: Sessions, cookies | ||
| Avoid Starting Sessions for Anonymous Users | ||
| =========================================== | ||
| Sessions are automatically started whenever you read, write or even check for the | ||
| existence of data in the session. This means that if you need to avoid creating | ||
| a session cookie for some users, it can be difficult: you must *completely* avoid | ||
| accessing the session. | ||
| For example, one common problem in this situation involves checking for flash | ||
| messages, which are stored in the session. The following code would guarantee | ||
| that a session is *always* started: | ||
| .. code-block:: html+jinja | ||
| {% for flashMessage in app.session.flashbag.get('notice') %} | ||
| <div class="flash-notice"> | ||
| {{ flashMessage }} | ||
| </div> | ||
| {% endfor %} | ||
| Even if the user is not logged in and even if you haven't created any flash message, | ||
| just calling the ``get()`` (or even ``has()``) method of the ``flashbag`` will | ||
| start a session. This may hurt your application performance because all users will | ||
| receive a session cookie. To avoid this behavior, add a check before trying to | ||
| access the flash messages: | ||
| .. code-block:: html+jinja | ||
| {% if app.request.hasPreviousSession %} | ||
| {% for flashMessage in app.session.flashbag.get('notice') %} | ||
Member There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others.Learn more. Ok, so I don't think this is right - it's a confusing thing: A) B) There's a huge confusion over this - I was just readingsymfony/symfony#6036 andsymfony/symfony#6388 about this - the functionality for this is not right in the core, which is why this is so difficult. | ||
| <div class="flash-notice"> | ||
| {{ flashMessage }} | ||
| </div> | ||
| {% endfor %} | ||
| {% endif %} | ||
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -7,4 +7,5 @@ Sessions | ||
| proxy_examples | ||
| locale_sticky_session | ||
| sessions_directory | ||
| php_bridge | ||
| avoid_session_start | ||