Comments on: symfony Doctrine database session storage

By: Rafael

Rafael — Tue, 21 Jun 2011 11:47:15 +0000

@Sergey

You have to remove the string “symfony/user/sfUser/configurations|” from the beginning of your session_data.

Do something like this:

$session_data = str_replace(“symfony/user/sfUser/configurations|”, “”, $session_data);
unserialize($session_data);

By: Sergey

Sergey — Fri, 18 Feb 2011 12:23:24 +0000

Hi! Can you help me? I’m need to get some data from user session by another user. Another user is FMS, which know session_id of user and which need to know some information stored in session of this user, how can i get it? session_data is serialized by symfony in database, so i cat get this data by query to db, but simple php function unserialize() doesn’t work…

By: Alistair Stead

Alistair Stead — Fri, 24 Sep 2010 07:53:40 +0000

Hi,

Your sessions stores in the database would still be cleaned by the default php session handler. If you wish to implement persistent sessions you can look at the sfGuard plugin for the remember me keys. This uses a persistent browser cookie that includes a hash to re-authenticate the user when they return to the site.

A word of warning however persistent sessions compromise security of your application. People can gain access to your application without the need for a password if the cookie exists on a machine. SO don’t use this on public computers.

-A

By: Jestep

Jestep — Thu, 23 Sep 2010 14:28:09 +0000

Has anyone implemented session persistence while using a database storage mechanism? I’ve been trying to implement persistent sessions while using a Propel storage for the session data. Doing it without getting overly complicated is becoming more difficult that I originally thought.

By: Merci Symfony « Tout sur Rien

Merci Symfony « Tout sur Rien — Mon, 12 Apr 2010 00:35:06 +0000

[...] Alistair Stead pour son article « symfony Doctrine database session storage« [...]

By: Alistair Stead

Alistair Stead — Tue, 06 Apr 2010 20:21:55 +0000

Depending upon you ini config the sessions should be removed automatically.

By: Saad

Saad — Tue, 30 Mar 2010 19:10:57 +0000

Hi,
Great post! I just used it because the prod servers we had to use were load-balanced and we were not able to install memcache.
The only concern I have: how to clear timed-out sessions? We created a (really simple) symfony task for that, because we weren’t sure if there is some “symfony magic” that automatically clears sessions. I haven’t find any. If you don’t clear expired sessions, I think the DB table will grow infinitely, right?

By: tmv

tmv — Tue, 23 Mar 2010 13:10:01 +0000

to define id column can be use param fixed:true then id field will be fixed size char(32) not varchar(32) and performance should be better.

id: { type: string(32), primary: true, notnull: true, fixed:true }

Thanks for this great tutorial!

By: victor

victor — Sat, 20 Feb 2010 21:13:08 +0000

Yes, I know that. But I refer to specific users, not at the number of logged in users.

By: Alistair Stead

Alistair Stead — Sat, 20 Feb 2010 07:00:25 +0000

Hi,

You can simple make a select on the session tabe and count the results. If everything is setup correctly the data rows are deleted after a user leaves the site.