PHP Session Cookies fail with users changing IP

Question

I have a login script for a small application that works by storing session cookies and checking them on each page to make sure the user is logged in. One of the two users w

Answer 1

By default the PHP Session does not account for IP changes. It's only based in the cookie value.

So perhaps maybe there is some customized code in your web app that invalidates the session when a user changes the IP address.