rfc:default-session-strict-mode
Differences
This shows you the differences between two versions of the page.
Next revision | Previous revision | ||
rfc:default-session-strict-mode [2018/02/13 17:40] – created peehaa | rfc:default-session-strict-mode [2021/03/27 15:01] (current) – Move to inactive ilutov | ||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== PHP RFC: Your Title Here ====== | + | ====== PHP RFC: Session strict mode default ini settings |
- | * Version: 0.1 | + | * Version: 0.2 |
* Date: 2018-02-13 | * Date: 2018-02-13 | ||
* Author: Pieter Hordijk, peehaa@php.net | * Author: Pieter Hordijk, peehaa@php.net | ||
- | * Status: | + | * Status: |
* First Published at: http:// | * First Published at: http:// | ||
===== Introduction ===== | ===== Introduction ===== | ||
- | Changing default setting | + | Changing default setting |
===== Proposal ===== | ===== Proposal ===== | ||
- | Currently strict mode for session | + | Currently strict mode for sessions |
+ | |||
+ | In the vast majority of cases you want to enable strict mode for sessions. As such this proposal enables a sane default for almost all of our users by changing the default values in our distributed ini files and by changing the hardcoded default in ''/ | ||
+ | |||
+ | The default setting for session strict mode will be set to enabled in this proposal. | ||
===== Backward Incompatible Changes ===== | ===== Backward Incompatible Changes ===== | ||
- | What breaks, | + | This proposal only changes a default |
+ | |||
+ | The only possible BC break would be if somebody downloads a new PHP version (including ini files) //and// happens to be among the very few users who needs adoptive sessions //and// doesn' | ||
+ | |||
+ | Or if somebody downloads a new PHP version //and// happens to be among the very few users who needs adoptive sessions //and// doesn' | ||
+ | |||
+ | As such the possible BC impact | ||
+ | |||
+ | Also note that a lot of people will be using PHP based on packages which often will come with their own ini files anyway makinh | ||
===== Proposed PHP Version(s) ===== | ===== Proposed PHP Version(s) ===== | ||
- | List the proposed PHP versions that the feature will be included in. Use relative versions such as " | + | PHP 7.3 |
===== RFC Impact ===== | ===== RFC Impact ===== | ||
Line 23: | Line 35: | ||
==== To Existing Extensions ==== | ==== To Existing Extensions ==== | ||
- | None? | + | None |
==== To Opcache ==== | ==== To Opcache ==== | ||
Line 32: | Line 44: | ||
==== php.ini Defaults ==== | ==== php.ini Defaults ==== | ||
- | If there are any php.ini settings then list: | + | In both php.ini-development |
- | * hardcoded default values | + | |
- | * php.ini-development | + | < |
- | * php.ini-production | + | |
+ | In / | ||
+ | |||
+ | < | ||
===== Open Issues ===== | ===== Open Issues ===== | ||
Line 44: | Line 59: | ||
===== Proposed Voting Choices ===== | ===== Proposed Voting Choices ===== | ||
- | Simple yes/no vote. Yes means changing the default mode in the ini files, no means leave it as it is. | + | Simple yes/no vote. Yes means changing the default mode in the ini files to enable strict sessions, no means leave it as it is. |
- | State whether this project requires | + | Requires |
===== Patches and Tests ===== | ===== Patches and Tests ===== | ||
- | No patch supplied yet as it is a trivial change in the ini files. | + | No patch supplied yet as it is a trivial change in the ini files and ''/ |
===== Implementation ===== | ===== Implementation ===== |
rfc/default-session-strict-mode.1518543623.txt.gz · Last modified: 2018/02/13 17:40 by peehaa