{"id":2316,"date":"2025-10-21T22:55:02","date_gmt":"2025-10-21T15:55:02","guid":{"rendered":"https:\/\/kienthucmo.com\/?p=2316"},"modified":"2025-10-21T22:56:01","modified_gmt":"2025-10-21T15:56:01","slug":"session-trong-lap-trinh-web","status":"publish","type":"post","link":"https:\/\/kienthucmo.com\/vi\/session-trong-lap-trinh-web\/","title":{"rendered":"Session trong l\u1eadp tr\u00ecnh web l\u00e0 g\u00ec? C\u00e1ch ho\u1ea1t \u0111\u1ed9ng, \u1ee9ng d\u1ee5ng v\u00e0 b\u1ea3o m\u1eadt hi\u1ec7u qu\u1ea3"},"content":{"rendered":"\n

Khi x\u00e2y d\u1ef1ng \u1ee9ng d\u1ee5ng web, m\u1ed9t trong nh\u1eefng v\u1ea5n \u0111\u1ec1 quan tr\u1ecdng m\u00e0 b\u1ea5t k\u1ef3 l\u1eadp tr\u00ecnh vi\u00ean n\u00e0o c\u0169ng ph\u1ea3i \u0111\u1ed1i m\u1eb7t l\u00e0: l\u00e0m th\u1ebf n\u00e0o \u0111\u1ec3 l\u01b0u l\u1ea1i tr\u1ea1ng th\u00e1i c\u1ee7a ng\u01b0\u1eddi d\u00f9ng gi\u1eefa c\u00e1c l\u1ea7n g\u1eedi y\u00eau c\u1ea7u (request)?<\/strong> B\u1edfi v\u00ec, v\u1ec1 b\u1ea3n ch\u1ea5t, HTTP l\u00e0 m\u1ed9t giao th\u1ee9c stateless<\/strong> \u2014 ngh\u0129a l\u00e0 sau m\u1ed7i request, server kh\u00f4ng t\u1ef1 ghi nh\u1edb th\u00f4ng tin g\u00ec v\u1ec1 ng\u01b0\u1eddi d\u00f9ng tr\u01b0\u1edbc \u0111\u00f3.<\/p>\n\n\n\n

Ch\u00ednh v\u00ec v\u1eady, session<\/strong> ra \u0111\u1eddi nh\u01b0 m\u1ed9t gi\u1ea3i ph\u00e1p \u0111\u1ec3 duy tr\u00ec tr\u1ea1ng th\u00e1i (state)<\/strong> trong qu\u00e1 tr\u00ecnh ng\u01b0\u1eddi d\u00f9ng t\u01b0\u01a1ng t\u00e1c v\u1edbi website. Nh\u1edd session, h\u1ec7 th\u1ed1ng c\u00f3 th\u1ec3 \u201cnh\u1edb\u201d \u0111\u01b0\u1ee3c ai \u0111ang \u0111\u0103ng nh\u1eadp, h\u1ecd \u0111\u00e3 th\u00eam g\u00ec v\u00e0o gi\u1ecf h\u00e0ng, ho\u1eb7c \u0111ang \u1edf b\u01b0\u1edbc n\u00e0o trong m\u1ed9t form nhi\u1ec1u b\u01b0\u1edbc.<\/p>\n\n\n\n

Trong b\u00e0i vi\u1ebft n\u00e0y, m\u00ecnh s\u1ebd c\u00f9ng b\u1ea1n t\u00ecm hi\u1ec3u chi ti\u1ebft v\u1ec1 session \u2014 t\u1eeb kh\u00e1i ni\u1ec7m, c\u01a1 ch\u1ebf ho\u1ea1t \u0111\u1ed9ng, \u1ee9ng d\u1ee5ng th\u1ef1c t\u1ebf<\/strong>, \u0111\u1ebfn b\u1ea3o m\u1eadt v\u00e0 so s\u00e1nh v\u1edbi cookie<\/strong>. Hi v\u1ecdng th\u00f4ng qua b\u00e0i vi\u1ebft ch\u00fang ta c\u00f9ng nhau s\u1ebd hi\u1ec3u r\u00f5 h\u01a1n v\u1ec1 m\u1ed9t ph\u1ea7n quan tr\u1ecdng trong n\u1ec1n t\u1ea3ng c\u1ee7a l\u1eadp tr\u00ecnh web hi\u1ec7n \u0111\u1ea1i.<\/p>\n\n\n\n

\"Session<\/figure>\n\n\n\n

1. Session l\u00e0 g\u00ec?<\/h2>\n\n\n\n

\u0110\u1ecbnh ngh\u0129a:<\/strong>
Session l\u00e0 m\u1ed9t v\u00f9ng l\u01b0u tr\u1eef t\u1ea1m th\u1eddi \u0111\u01b0\u1ee3c t\u1ea1o ra tr\u00ean server<\/strong> \u0111\u1ec3 ghi nh\u1edb th\u00f4ng tin v\u1ec1 ng\u01b0\u1eddi d\u00f9ng trong su\u1ed1t qu\u00e1 tr\u00ecnh h\u1ecd t\u01b0\u01a1ng t\u00e1c v\u1edbi \u1ee9ng d\u1ee5ng web. M\u1ed7i session \u0111\u01b0\u1ee3c g\u1eafn v\u1edbi m\u1ed9t Session ID<\/strong> duy nh\u1ea5t \u2014 gi\u1ed1ng nh\u01b0 \u201ct\u1ea5m v\u00e9 \u0111\u1ecbnh danh\u201d gi\u00fap server bi\u1ebft \u0111\u01b0\u1ee3c ai \u0111ang g\u1eedi y\u00eau c\u1ea7u. B\u00ean trong session c\u00f3 th\u1ec3 ch\u1ee9a c\u00e1c d\u1eef li\u1ec7u nh\u01b0 th\u00f4ng tin \u0111\u0103ng nh\u1eadp, gi\u1ecf h\u00e0ng, ho\u1eb7c c\u00e1c thi\u1ebft l\u1eadp t\u1ea1m th\u1eddi c\u1ee7a ng\u01b0\u1eddi d\u00f9ng.<\/p>\n\n\n\n

Nh\u1eefng \u0111i\u1ec3m quan tr\u1ecdng c\u1ea7n hi\u1ec3u:<\/strong><\/p>\n\n\n\n

    \n
  • Session kh\u00e1c v\u1edbi cookie:<\/strong> cookie \u0111\u01b0\u1ee3c l\u01b0u tr\u00ean m\u00e1y ng\u01b0\u1eddi d\u00f9ng, c\u00f2n session l\u01b0u tr\u00ean server. Tuy nhi\u00ean, hai c\u01a1 ch\u1ebf n\u00e0y th\u01b0\u1eddng ph\u1ed1i h\u1ee3p<\/strong> v\u1edbi nhau \u2014 cookie gi\u1eef Session ID<\/code>, c\u00f2n d\u1eef li\u1ec7u th\u1eadt n\u1eb1m tr\u00ean server.<\/li>\n\n\n\n
  • T\u00ednh b\u1ea3o m\u1eadt cao h\u01a1n:<\/strong> v\u00ec th\u00f4ng tin ng\u01b0\u1eddi d\u00f9ng kh\u00f4ng n\u1eb1m tr\u00ean m\u00e1y client, session gi\u00fap h\u1ea1n ch\u1ebf nguy c\u01a1 b\u1ecb s\u1eeda \u0111\u1ed5i ho\u1eb7c \u0111\u00e1nh c\u1eafp d\u1eef li\u1ec7u.<\/li>\n\n\n\n
  • T\u00ednh t\u1ea1m th\u1eddi:<\/strong> session ch\u1ec9 t\u1ed3n t\u1ea1i trong m\u1ed9t kho\u1ea3ng th\u1eddi gian nh\u1ea5t \u0111\u1ecbnh. Khi ng\u01b0\u1eddi d\u00f9ng \u0111\u0103ng xu\u1ea5t ho\u1eb7c session h\u1ebft h\u1ea1n, d\u1eef li\u1ec7u trong \u0111\u00f3 s\u1ebd b\u1ecb x\u00f3a.<\/li>\n\n\n\n
  • M\u1ee5c \u0111\u00edch ch\u00ednh:<\/strong> gi\u00fap \u1ee9ng d\u1ee5ng \u201cghi nh\u1edb\u201d tr\u1ea1ng th\u00e1i l\u00e0m vi\u1ec7c c\u1ee7a ng\u01b0\u1eddi d\u00f9ng \u2014 ch\u1eb3ng h\u1ea1n nh\u01b0 duy tr\u00ec tr\u1ea1ng th\u00e1i \u0111\u0103ng nh\u1eadp, l\u01b0u gi\u1ecf h\u00e0ng, ho\u1eb7c ti\u1ebfp t\u1ee5c c\u00e1c b\u01b0\u1edbc trong m\u1ed9t form nhi\u1ec1u trang.<\/li>\n<\/ul>\n\n\n\n

    T\u00f3m l\u1ea1i, session \u0111\u00f3ng vai tr\u00f2 l\u00e0 \u201cb\u1ed9 nh\u1edb t\u1ea1m\u201d c\u1ee7a server, gi\u00fap duy tr\u00ec tr\u1ea3i nghi\u1ec7m li\u00ean t\u1ee5c cho ng\u01b0\u1eddi d\u00f9ng tr\u00ean m\u1ed9t giao th\u1ee9c v\u1ed1n kh\u00f4ng c\u00f3 kh\u1ea3 n\u0103ng ghi nh\u1edb nh\u01b0 HTTP.<\/p>\n\n\n\n

    2. C\u00e1ch ho\u1ea1t \u0111\u1ed9ng c\u1ee7a session<\/h2>\n\n\n\n

    \u0110\u1ec3 hi\u1ec3u r\u00f5 c\u01a1 ch\u1ebf ho\u1ea1t \u0111\u1ed9ng c\u1ee7a session, m\u00ecnh c\u00f3 th\u1ec3 h\u00ecnh dung n\u00f3 nh\u01b0 m\u1ed9t qu\u00e1 tr\u00ecnh \u201cghi nh\u1edb c\u00f3 ki\u1ec3m so\u00e1t\u201d gi\u1eefa client<\/strong> v\u00e0 server<\/strong>. D\u01b0\u1edbi \u0111\u00e2y l\u00e0 c\u00e1c b\u01b0\u1edbc c\u1ee5 th\u1ec3:<\/p>\n\n\n\n

    \"
    T\u1ea1i sao Session quan tr\u1ecdng trong l\u1eadp tr\u00ecnh web<\/figcaption><\/figure>\n\n\n\n
      \n
    • Kh\u1edfi t\u1ea1o session:<\/strong> Khi ng\u01b0\u1eddi d\u00f9ng l\u1ea7n \u0111\u1ea7u g\u1eedi y\u00eau c\u1ea7u (ch\u1eb3ng h\u1ea1n \u0111\u0103ng nh\u1eadp ho\u1eb7c truy c\u1eadp m\u1ed9t trang c\u1ea7n l\u01b0u tr\u1ea1ng th\u00e1i), server<\/strong> s\u1ebd t\u1ea1o m\u1ed9t session object<\/strong> m\u1edbi v\u00e0 sinh ra m\u1ed9t Session ID<\/strong> \u2014 chu\u1ed7i k\u00fd t\u1ef1 ng\u1eabu nhi\u00ean, duy nh\u1ea5t, \u0111\u1ee7 d\u00e0i \u0111\u1ec3 kh\u00f4ng th\u1ec3 \u0111o\u00e1n \u0111\u01b0\u1ee3c.<\/li>\n\n\n\n
    • L\u01b0u d\u1eef li\u1ec7u tr\u00ean server:<\/strong> Server s\u1ebd g\u00e1n c\u00e1c th\u00f4ng tin c\u1ea7n thi\u1ebft (v\u00ed d\u1ee5: user_id<\/code>, vai tr\u00f2 ng\u01b0\u1eddi d\u00f9ng, gi\u1ecf h\u00e0ng t\u1ea1m th\u1eddi, ho\u1eb7c b\u01b0\u1edbc hi\u1ec7n t\u1ea1i trong form) v\u00e0o session object v\u00e0 l\u01b0u trong b\u1ed9 nh\u1edb (RAM), c\u01a1 s\u1edf d\u1eef li\u1ec7u, ho\u1eb7c kho l\u01b0u tr\u1eef chuy\u00ean d\u1ee5ng nh\u01b0 Redis<\/strong>.<\/li>\n\n\n\n
    • G\u1eedi Session ID v\u1ec1 client:<\/strong> Sau khi t\u1ea1o xong, server g\u1eedi Session ID<\/strong> n\u00e0y v\u1ec1 client \u2014 th\u00f4ng th\u01b0\u1eddng qua cookie, v\u00ed d\u1ee5: <\/li>\n<\/ul>\n\n\n\n
        \n
      1. <\/li>\n<\/ol>\n\n\n\n
        <\/circle><\/circle><\/circle><\/g><\/svg><\/span>