How to prevent PHP sessions being shared between different apache vhosts / different applications

When you run multiple applications on one server, you might run into the session-sharing problem: All your applications share the same pool of PHP sessions. This is especially bad when running multiple instances of the same software, like multiple WordPress blogs etc.

Usually, when running multiple applications, you’ll do this with multiple VirtualHosts on your server (i cannot go into detail what a VirtualHost is or how to setup, as you probably already know when reading such an article). The way to go is simple: Set a different PHP session folder for every VirtualHost, like this:

php_value session.save_path "/var/mysessionsforapplication_1"

In this example I’m running two instances of the same application on one server, each one on a different port (you might want to use a domain name here).

<VirtualHost *:81>
    ...
    DocumentRoot /var/www/app1
    <Directory "/var/www/app1">
        AllowOverride All
        php_value session.save_path "/var/mysessionsforapplication_1"
   </Directory>
</VirtualHost>

<VirtualHost *:82>
    ...
    DocumentRoot /var/www/app2
    <Directory "/var/www/app2">
        AllowOverride All
        php_value session.save_path "/var/mysessionsforapplication_2"
   </Directory>
</VirtualHost>

Please note that you need to restart the apache after you’ve changed things like that. Setting up VirtualHosts is a topic on it’s own, so it’s not covered here. In most cases editing

/etc/apache2/sites-available/default

will do the job.

This article was written quite a while ago (6 years), please keep this in mind when using the information written here. Links, code and commands might be outdated or broken.

Random articles

1 Comment

Marcello Kad Cadoni

May 27, 2015 1:24 pm

Why you don’t put this parameter into the Virtualhost tag instead of directory tag?

Reply

How to prevent PHP sessions being shared between different apache vhosts / different applications

Random articles

1 Comment

Leave A Comment Cancel reply

Best introduction to unix command line / bash ever (by André Augusto Costa Santos)

Facebook releases HipHop (HHVM) 3.0, adds mysqli and support for Hack language

PHP Caching Best Practices by Eli White (video from PHP UK Conference 2014)

Profiling PHP Applications by Bastian Hofmann (video from PHP UK Conference 2014)

DEF CON 18 – When your computer got stolen and you can still SSH into it: “Pwned by the 0wner” (22min conference talk)

Europeans: Get ready for OFFF conference / festival in Barcelona, May 2014

How to install/setup a basic LAMP stack (Linux, Apache, MySQL, PHP) on Ubuntu 12.04 or Debian 7.0/7.1

Debug PDO with this one-line function. Yeah!

How to install Composer on Windows 7 / 8 or Ubuntu

How Snapchat wants to earn money (by establishing vertical videos)

GitHub finally introduces repo traffic stats

Why Modern PHP is Awesome And How You Can Use It Today (Slides by Matt Stauffer)

A preinstalled Vagrant box with PHP HipHop / HHVM and Ubuntu 13.10 (Saucy Salamander)

Free $10 coupon for DigitalOcean SSD cloud VPS hosting

A PHPStorm shortcuts cheat sheet (for Windows, Mac OS and Linux)

GAMESCOM 2014: Awesome Next-Gen ingame graphics

How to debug code on a remote server (or in vagrant box) with PHPStorm

A quick video introduction into Shadow-DOM, the game-changing DOM-subtree-technology

Jonathan Snook – CSS is a Mess – How to organize CSS in big projects (54min video talk)

All new features of WordPress 3.9 in this 2 minute video

Switching from Java to PHP. Seriously. A very interesting and pre-judice-free talk with Ph.D. Aris Zakinthinos

How to setup a config-free WordPress, PHP and MySQL (for local development) in Windows 7 / 8 in under 3 minutes

PHP 5.6 announced, statically typed (!) “new” PHP announced by Facebook devs

How to install Composer on Windows 7 / 8 or Ubuntu