-

Author: fabpot

controller.rst

@@ -394,6 +394,40 @@ Request object.
 Managing the Session
 --------------------
 
+You can store special messages, called "flash" messages, on the user's session.
+By design, flash messages are meant to be used exactly once: they vanish from
+the session automatically as soon as you retrieve them. This feature makes
+"flash" messages particularly great for storing user notifications.
+
+For example, imagine you're processing a :doc:`form </forms>` submission::
+
+.. configuration-block::
+
+    .. code-block:: php-symfony
+
+        use Symfony\Component\HttpFoundation\Request;
+        use Symfony\Component\HttpFoundation\Response;
+        // ...
+
+        public function update(Request $request): Response
+        {
+            // ...
+
+            if ($form->isSubmitted() && $form->isValid()) {
+                // do some sort of processing
+
+                $this->addFlash(
+                    'notice',
+                    'Your changes were saved!'
+                );
+                // $this->addFlash() is equivalent to $request->getSession()->getFlashBag()->add()
+
+                return $this->redirectToRoute(/* ... */);
+            }
+
+            return $this->render(/* ... */);
+        }
+
 :ref:`Reading <session-intro>` for more information about using Sessions.
 
 .. index::

session.rst

@@ -66,16 +66,11 @@ if you type-hint an argument with :class:`Symfony\\Component\\HttpFoundation\\Re
 
     .. code-block:: php-standalone
 
-        use Symfony\Component\HttpFoundation\Session\Attribute\AttributeBag;
         use Symfony\Component\HttpFoundation\Session\Session;
-        use Symfony\Component\HttpFoundation\Session\Storage\NativeSessionStorage;
 
         $session = new Session();
         $session->start();
 
-        // Pass a storage and a bag implementation explicitely
-        $session = new Session(new NativeSessionStorage(), new AttributeBag());
-
 From a Symfony controller, type-hint an argument with
 :class:`Symfony\\Component\\HttpFoundation\\RequestStack` or
 :class:`Symfony\\Component\\HttpFoundation\\Request`::
@@ -336,6 +331,19 @@ configuration <config-framework-session>` in
             ;
         };
 
+    .. code-block:: php-standalone
+
+        use Symfony\Component\HttpFoundation\Cookie;
+        use Symfony\Component\HttpFoundation\Session\Attribute\AttributeBag;
+        use Symfony\Component\HttpFoundation\Session\Session;
+        use Symfony\Component\HttpFoundation\Session\Storage\NativeSessionStorage;
+
+        $storage = new NativeSessionStorage([
+            'cookie_secure' => 'auto',
+            'cookie_samesite' => Cookie::SAMESITE_LAX,
+        ]);
+        $session = new Session($storage);
+
 Setting the ``handler_id`` config option to ``null`` means that Symfony will
 use the native PHP session mechanism. The session metadata files will be stored
 outside of the Symfony application, in a directory controlled by PHP. Although
@@ -390,6 +398,18 @@ session metadata files:
             ;
         };
 
+    .. code-block:: php-standalone
+
+        use Symfony\Component\HttpFoundation\Cookie;
+        use Symfony\Component\HttpFoundation\Session\Attribute\AttributeBag;
+        use Symfony\Component\HttpFoundation\Session\Session;
+        use Symfony\Component\HttpFoundation\Session\Storage\Handler\NativeFileSessionHandler;
+        use Symfony\Component\HttpFoundation\Session\Storage\NativeSessionStorage;
+
+        $handler = new NativeFileSessionHandler('/var/sessions');
+        $storage = new NativeSessionStorage([], $handler);
+        $session = new Session($storage);
+
 Check out the Symfony config reference to learn more about the other available
 :ref:`Session configuration options <config-framework-session>`.
 
@@ -480,11 +500,17 @@ a Symfony service for the connection to the Redis server:
 
 .. configuration-block::
 
-    .. code-block:: yaml
-
         # config/services.yaml
         services:
             # ...
+            Symfony\Component\HttpFoundation\Session\Storage\Handler\RedisSessionHandler:
+                arguments:
+                    - '@Redis'
+                    # you can optionally pass an array of options. The only options are 'prefix' and 'ttl',
+                    # which define the prefix to use for the keys to avoid collision on the Redis server
+                    # and the expiration time for any given entry (in seconds), defaults are 'sf_s' and null:
+                    # - { 'prefix': 'my_prefix', 'ttl': 600 }
+
             Redis:
                 # you can also use \RedisArray, \RedisCluster or \Predis\Client classes
                 class: Redis
@@ -527,53 +553,7 @@ a Symfony service for the connection to the Redis server:
                         <argument>%env(REDIS_PASSWORD)%</argument>
                     </call> -->
                 </service>
-            </services>
-        </container>
-
-    .. code-block:: php
 
-        // ...
-        $container
-            // you can also use \RedisArray, \RedisCluster or \Predis\Client classes
-            ->register('Redis', \Redis::class)
-            ->addMethodCall('connect', ['%env(REDIS_HOST)%', '%env(int:REDIS_PORT)%'])
-            // uncomment the following if your Redis server requires a password:
-            // ->addMethodCall('auth', ['%env(REDIS_PASSWORD)%'])
-            // uncomment the following if your Redis server requires a user and a password (when user is not default):
-            // ->addMethodCall('auth', ['%env(REDIS_USER)%', '%env(REDIS_PASSWORD)%'])
-        ;
-
-Now pass this ``\Redis`` connection as an argument of the service associated to the
-:class:`Symfony\\Component\\HttpFoundation\\Session\\Storage\\Handler\\RedisSessionHandler`.
-This argument can also be a ``\RedisArray``, ``\RedisCluster``, ``\Predis\Client``,
-and ``RedisProxy``:
-
-.. configuration-block::
-
-    .. code-block:: yaml
-
-        # config/services.yaml
-        services:
-            # ...
-            Symfony\Component\HttpFoundation\Session\Storage\Handler\RedisSessionHandler:
-                arguments:
-                    - '@Redis'
-                    # you can optionally pass an array of options. The only options are 'prefix' and 'ttl',
-                    # which define the prefix to use for the keys to avoid collision on the Redis server
-                    # and the expiration time for any given entry (in seconds), defaults are 'sf_s' and null:
-                    # - { 'prefix': 'my_prefix', 'ttl': 600 }
-
-    .. code-block:: xml
-
-        <!-- config/services.xml -->
-        <!-- config/services.xml -->
-        <?xml version="1.0" encoding="UTF-8" ?>
-        <container xmlns="http://symfony.com/schema/dic/services"
-            xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
-            xsi:schemaLocation="http://symfony.com/schema/dic/services
-                https://symfony.com/schema/dic/services/services-1.0.xsd">
-                
-            <services>
                 <service id="Symfony\Component\HttpFoundation\Session\Storage\Handler\RedisSessionHandler">
                     <argument type="service" id="Redis"/>
                     <!-- you can optionally pass an array of options. The only options are 'prefix' and 'ttl',
@@ -594,14 +574,23 @@ and ``RedisProxy``:
         use Symfony\Component\HttpFoundation\Session\Storage\Handler\RedisSessionHandler;
 
         $container
+            // you can also use \RedisArray, \RedisCluster or \Predis\Client classes
+            ->register('Redis', \Redis::class)
+            ->addMethodCall('connect', ['%env(REDIS_HOST)%', '%env(int:REDIS_PORT)%'])
+            // uncomment the following if your Redis server requires a password:
+            // ->addMethodCall('auth', ['%env(REDIS_PASSWORD)%'])
+            // uncomment the following if your Redis server requires a user and a password (when user is not default):
+            // ->addMethodCall('auth', ['%env(REDIS_USER)%', '%env(REDIS_PASSWORD)%'])
+
             ->register(RedisSessionHandler::class)
             ->addArgument(
                 new Reference('Redis'),
                 // you can optionally pass an array of options. The only options are 'prefix' and 'ttl',
                 // which define the prefix to use for the keys to avoid collision on the Redis server
                 // and the expiration time for any given entry (in seconds), defaults are 'sf_s' and null:
                 // ['prefix' => 'my_prefix', 'ttl' => 600],
-            );
+            )
+        ;
 
 Next, use the :ref:`handler_id <config-framework-session-handler-id>`
 configuration option to tell Symfony to use this service as the session handler: