{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://www.manongdao.com/data/attach/logo/logo.png', '推荐 等我变得足够好 的问题《How to avoid unwanted session carry-over between d》','https://www.manongdao.com/q-952211.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}
Scenario
I have the local version of a Zend Framework application open in one Chrome tab (development environment). At the same time I have the stage or live version of the same application running on a remote server open as well. I'm logged in one of the instances. When I try to log in to the other, this instance exits with a fatal error until I delete the cookies of the other instance, where I'm logged in first.
The domain setting on the session cookies is not identical but the carry-over still happens.
Questions
Why does that happen?
How can I avoid it?
Give each server a different session name (not the default one), so that you have different sessions. This does normally work if you want to use multiple sessions next to each other (and you don't want to check the cookie settings like taking care cookie works in it's domain only and that next to cookie nothing else is used to pass the ID).
In native PHP it's
session_name, I assume Zend Framework has a corresponding configuration setting as well.What is the domain setting on the session cookies for both? If it's a top level one, like
.example.com, then the cookie'll be shared across both systems. You could nail it down tolocal.example.comandremote.example.comso the session cookies are distinct and won't overlap.