Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:73266 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 35438 invoked from network); 18 Mar 2014 10:58:49 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 18 Mar 2014 10:58:49 -0000 Authentication-Results: pb1.pair.com header.from=narf@devilix.net; sender-id=pass Authentication-Results: pb1.pair.com smtp.mail=narf@devilix.net; spf=pass; sender-id=pass Received-SPF: pass (pb1.pair.com: domain devilix.net designates 209.85.213.48 as permitted sender) X-PHP-List-Original-Sender: narf@devilix.net X-Host-Fingerprint: 209.85.213.48 mail-yh0-f48.google.com Received: from [209.85.213.48] ([209.85.213.48:52092] helo=mail-yh0-f48.google.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id 7F/22-23742-8E628235 for ; Tue, 18 Mar 2014 05:58:49 -0500 Received: by mail-yh0-f48.google.com with SMTP id z6so6597365yhz.35 for ; Tue, 18 Mar 2014 03:58:44 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=devilix.net; s=google; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=ucUS3rQ70uBeASkPALM99qkfURHABD6mGzkrqAl6BXA=; b=XvUQw5FF7QKSAtIHes8uYuDpSzHOoCwz/dQIdEZj2GKguigeISUJx1LSmhMTsDQcjj 4tH0EdrPkuDIUCXTi1VuK3bgZgV7v6p8RwUHv/NoXmDiElUNRwLmMPe3UWyjSueO0gL/ pee620FVfV/+Tm8kSYu/DmGr5YA2olgpNy/6A= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=ucUS3rQ70uBeASkPALM99qkfURHABD6mGzkrqAl6BXA=; b=D/LiD6xi3flVHG+N1DcpM54V0zM6KzZW+lFdpvX3HtjM4/oB0qPCmX2DhvIihQfBj8 ILSLT+aggIlI+3SIPYcFd1iRbQzT0393LdxRcm2ZIb7j4bKbXA/iVNwQvlSED6ipkJTH naMpUOSNXT48CDCnq5l6k/twrflFA2WQ/GURdZ9vjuoRnDqrNK+0F1upnuoaSOBnoCcL 5Tv9ilOm5HG5BNoFo4/2tM3GVZGXuZ93Tm+0011U7A8nlpz8Zui+5VLmU3w2ri6UEMAb DuBUxIGL2kQAyj5zaoySmt/S8y18OQRXIQVmZ4sFLDmwQ86OBvDe+hIUDfQnF0GpNkzU lrbg== X-Gm-Message-State: ALoCoQnuiVOVJIapUe3ZGYlsPy4ZPsHRx+HzabeE8V3WMqDij+hgCfIOK1y5ez4jXlXaBGcRYpLj MIME-Version: 1.0 X-Received: by 10.236.199.78 with SMTP id w54mr271741yhn.139.1395140324481; Tue, 18 Mar 2014 03:58:44 -0700 (PDT) Received: by 10.170.188.139 with HTTP; Tue, 18 Mar 2014 03:58:44 -0700 (PDT) In-Reply-To: References: <5324FE40.1070704@sugarcrm.com> <532603A0.8060802@sugarcrm.com> <5327DD6E.6030402@sugarcrm.com> Date: Tue, 18 Mar 2014 12:58:44 +0200 Message-ID: To: Yasuo Ohgaki Cc: Stas Malyshev , "internals@lists.php.net" Content-Type: text/plain; charset=UTF-8 Subject: Re: [PHP-DEV] [RFC] Revert/extend/postpone original RFC about read_only, lazy_write sessions From: narf@devilix.net (Andrey Andreev) Hi, >> I think defaults should not change in minor version, unless there's a >> very good reason for it, and here it's not a very good reason. Session I don't think 5.6 is looked at as a minor version. Features have been added, changed, deprecated and removed in previous 5.x releases. >> module is very sensitive, and doing changes in it should be very >> conservative to not break people's workflows. While new behavior serves >> an important use case, it may not be everybody's use case, especially >> with all handlers. Thus, I would rather have it an option - exactly as >> voted. When we move into PHP 6, where certain major changes are >> expected, we can change the defaults. But I think introducing such >> change in a minor version is unnecessary risk. >> And also it subverts RFC process as it's not what the vote was for, and >> it's a substantial change - default behavior change (means, everybody >> affected) instead of option (means, only people using the option affected Exacly why I wrote an RFC, except Yasuo already explained that current workflows (speaking of userland handlers) are not affected and BC is maintaned. > No problem. > > How about making it a INI option? It makes session_start() option handling > code > a little simpler. It's not mandatory, though. +1 from me, if it is to be kept as an option. > I found issue with object based user save handler. Unlike procedural user > save handlers, > object based user save handler uses previously used save handler as it's > base class (some what) Isn't that the whole point of it, that you can overload only specific parts of the default one? > I think we are better to have another SessionHandler object that support new > APIs. > We can handle create_sid() method rename with new object also. We may keep > current implementation undocumented and may document it new one > (createSid()) only. > I will name it "SessionUpdateTimestampHandler". If anyone has suggestions, > I would appreciate it. I object, although it should've been called SessionFilesHandler in the first place, that way we could also have SessionMemcacheHandler, SessionWhateverHandler - way nicer than it currently is, but again - not the point of this discussion. Cheers, Andrey.