I have a situation where I’ve started a session with:
session_id( $consistent_session_name_for_user );
session_start();
$_SESSION['key'] = $value;
but then later I decide I don’t actually want to “commit” (write) this session. PHP doesn’t seem to have any kind of session_abort_write() function. I don’t want to destroy the session variables from prior script runs, so I can’t use session_destroy()
I tried session_id(""), but that call fails. I could “redirect” the session so it writes to another session, like session_id("trash"), but that would cause a lot of PHP (Apache) connections to try to write to the same session “file”, which I want to avoid.
I’m highly simplifying the problem here, we’re actually storing sessions in Memcached and this is a complex codebase. So I don’t want to be sending unnecessary “trash” sessions to the Memcached server all the time.
I haven’t actually determined if this method prevents writing the session to the session store, but here’s the solution I finally used:
I’m hoping this has the effect that nothing will get written, but I’m guessing it still will write a blank file, because PHP can’t know that sess_trash isn’t already there.
If you want to completely avoid writing the session, you’ll have to use a custom session handler in PHP and set a global flag to prevent writing the session.