- PHP Manual
- Session Functions
- Set the session cookie parameters
Contents
session_set_cookie_params
(PHP 4, PHP 5, PHP 7)
session_set_cookie_params — Set the session cookie parameters
Description
session_set_cookie_params
( int $lifetime_or_options
[, string|null $path = NULL
[, string|null $domain = NULL
[, bool|null $secure = NULL
[, bool|null $httponly = NULL
]]]] ) : bool
session_set_cookie_params
( array $lifetime_or_options
) : bool
Set cookie parameters defined in the php.ini file. The effect of this
function only lasts for the duration of the script. Thus, you need to
call session_set_cookie_params() for every request and
before session_start() is called.
This function updates the runtime ini values of the corresponding PHP ini configuration keys which can be retrieved with the ini_get().
Parameters
lifetime_or_optionsWhen using the first signature, lifetime of the session cookie, defined in seconds.
When using the second signature, an associative array which may have any of the keys
lifetime,path,domain,secure,httponlyandsamesite. The values have the same meaning as described for the parameters with the same name. The value of thesamesiteelement should be eitherLaxorStrict. If any of the allowed options are not given, their default values are the same as the default values of the explicit parameters. If thesamesiteelement is omitted, no SameSite cookie attribute is set.pathPath on the domain where the cookie will work. Use a single slash ('/') for all paths on the domain.
domainCookie domain, for example 'www.php.net'. To make cookies visible on all subdomains then the domain must be prefixed with a dot like '.php.net'.
secureIf
TRUEcookie will only be sent over secure connections.httponlyIf set to
TRUEthen PHP will attempt to send the httponly flag when setting the session cookie.
Return Values
Returns TRUE on success or FALSE on failure.
Changelog
| Version | Description |
|---|---|
| 8.0.0 | path, domain,
|
| 7.3.0 | An alternative signature supporting an lifetime_or_options
array has been added. This signature supports also setting of the SameSite cookie attribute. |
| 7.2.0 | Returns TRUE on success or FALSE on failure. Formerly the function returned void.
|
See Also
- session.cookie_lifetime
- session.cookie_path
- session.cookie_domain
- session.cookie_secure
- session.cookie_httponly
- session.cookie_samesite
- session_get_cookie_params() - Get the session cookie parameters
