<![CDATA[FrontAccounting forum — Session destroy warnings]]> https://frontaccounting.com/punbb/viewtopic.php?id=5953 Sat, 26 Sep 2015 17:50:30 +0000 PunBB <![CDATA[Re: Session destroy warnings]]> https://frontaccounting.com/punbb/viewtopic.php?pid=24358#p24358 @joe: Can pull it in from my repo.

]]> Sat, 26 Sep 2015 17:50:30 +0000 https://frontaccounting.com/punbb/viewtopic.php?pid=24358#p24358 <![CDATA[Session destroy warnings]]> https://frontaccounting.com/punbb/viewtopic.php?pid=24351#p24351 A look at tmp/error.log in FA (on XAMPP in Windows) will show:

0::logout.php:50: session_destroy() [<a href='function.session-destroy'>function.session-destroy</a>]: Session object destruction failed

each time one logs out.

This is because session_destroy() is attempted after a session_unset() in access/logout.php - the "@" notwithstanding. If this is required for some installations, then the following can replace the last 2 statements in it:

session_unset();
if (session_id() != '') session_destroy();

For PHP 5.4+, use the following:

session_unset();
if (session_status() == PHP_SESSION_ACTIVE) session_destroy();
]]> Fri, 25 Sep 2015 22:02:54 +0000 https://frontaccounting.com/punbb/viewtopic.php?pid=24351#p24351