Hey Rick, after some research I found that the when you set the php’s session life time to 0, it’s dies after the browser is closed. (php site http://ar2.php.net/manual/en/function.setcookie.php). After debuged my cookie I’ve founded that was setted to 0 on the client also.
So we could have the same in codeigniter, it’s a small change.

At Session.php

After this changes:
- sess_expiration = 0 it will timeout after browser closes
- sess_expiration = -1 it will receive the default 2 years value.

Hope you can add this.

Though is only a small distraction, I would like to remind you to put the ; in the line:

becoming

Hugz :D

BTW,

I have made that change, and I was losing the session all the time…

So I’ve been checking Session class and saw one validation that was… hum… how do I say… incomplete after the fix you posted here…

This was the validation:

I changed it to:

The reason was pretty simple… If you add 0 to the last_activity, off course it will be smaller than the $this->now value

So, I defined that it should only do that check if sess_length is different of 0 (based on the top fix/patch).

Hugz

For those who don’t want to edit the actual Session class, here is a MY_Session that you can add to application/library and get the session timeout along side the normal nnn-minute timeout.

It works by adding this to your config:

(I copied this in and hacked out some other custom code from my class, I apologize if it doesn’t work out of the box.)

OverZealous.com - 22 January 2009 10:54 PM

For those who don’t want to edit the actual Session class, here is a MY_Session that you can add to application/library and get the session timeout along side the normal nnn-minute timeout.

It works by adding this to your config:

$config['sess_browser'] = TRUE;

(I copied this in and hacked out some other custom code from my class, I apologize if it doesn’t work out of the box.)

Sorry, but I don’t understand how can I make this work to have the session destroyed when I close the browser…

can you explain a bit more?

First, place the included MY_Session.php file in application/libraries

This will override some of the functionality built into the CodeIgniter Session class.

Second, add the config line posted above to your config.

Now the Session Library will set the cookie using a timeout of ‘0’, which tells the browser to delete the cookie as soon as the browser as closed.

It doesn’t destroy the session, but it prevents the session from persisting after the browser is closed or opened.  The session itself will be destroyed eventually, usually after the normal inactive timeout passes.