- add note why replace is 0, so that I don't wonder again in 2 months

why session_regenerate_id() sends the session cookie twice
2025-08-18 15:08:55 +02:00 · 2006-07-12 15:28:18 +00:00 · 2006-07-12 15:28:18 +00:00 · 1d6027adbd
commit 1d6027adbd
parent 550a7186c5
1 changed files with 2 additions and 0 deletions
--- a/ext/session/session.c
+++ b/ext/session/session.c
@ -942,6 +942,8 @@ static void php_session_send_cookie(TSRMLS_D)

 	smart_str_0(&ncookie);
 	
+	/*	'replace' must be 0 here, else a previous Set-Cookie
+		header, probably sent with setcookie() will be replaced! */
 	sapi_add_header_ex(ncookie.c, ncookie.len, 0, 0 TSRMLS_CC);
 }