Use Redis to save the session, that is, to use only session_id, not the actual value in the session?
//获取session_id $sid=session_id(); \Predis\Autoloader::register(); $a = new \Predis\Client(); $a->set('sid',$sid); $a->set('uid','100');
When you get the value
$sidfrompost=I('post.sid'); \Predis\Autoloader::register(); $a = new \Predis\Client(); $sidfromredis=$a->get('sid'); if($sidfrompost!=$sidfromredis){ $this->ajaxReturn(array("result"=>"非法访问")); exit; }else{ $this->ajaxReturn(array("uid"=>$a->get('uid'),"sid"=>$sidfromredis,"session"=>session())); }
Reply content:
Use Redis to save the session, that is, to use only session_id, not the actual value in the session?
//获取session_id $sid=session_id(); \Predis\Autoloader::register(); $a = new \Predis\Client(); $a->set('sid',$sid); $a->set('uid','100');
When you get the value
$sidfrompost=I('post.sid'); \Predis\Autoloader::register(); $a = new \Predis\Client(); $sidfromredis=$a->get('sid'); if($sidfrompost!=$sidfromredis){ $this->ajaxReturn(array("result"=>"非法访问")); exit; }else{ $this->ajaxReturn(array("uid"=>$a->get('uid'),"sid"=>$sidfromredis,"session"=>session())); }
Can do a set a get support cross-domain, you can get the best, cross-domain words your redis will open the external port, for security please set up Redis login password
In fact, you do not need to ask so many questions, the use of search, I google search "thinkphp session Redis" The first one is CSDN blog article: Portal