PHP Cookies

Intermediate~25 min read

Cookies store small amounts of data on the client's browser. Perfect for preferences, tracking, and "remember me" functionality!

<?php
// Cookies

// Set a cookie (expires in 1 hour)
setcookie("username", "john_doe", time() + 3600, "/");

// Set cookie with more options
setcookie(
    "user_pref",           // name
    "dark_mode",           // value
    time() + (86400 * 30), // expires in 30 days
    "/",                   // path
    "",                    // domain
    false,                 // secure (HTTPS only)
    true                   // httponly (not accessible via JavaScript)
);

// Read cookie
if (isset($_COOKIE['username'])) {
    echo "Welcome back, " . $_COOKIE['username'] . "!\n";
}

// Delete cookie (set expiration to past)
setcookie("username", "", time() - 3600, "/");

// Cookie best practices:
// 1. Don't store sensitive data
// 2. Use httponly flag
// 3. Use secure flag for HTTPS
// 4. Set appropriate expiration
// 5. Validate cookie data

// Example: Remember me functionality
if (isset($_POST['remember_me'])) {
    setcookie("remember_token", bin2hex(random_bytes(32)), time() + (86400 * 30), "/", "", false, true);
}

Output

Click Run to execute your code

Setting a Cookie

<?php
// Basic cookie (expires in 1 hour)
setcookie("username", "john_doe", time() + 3600, "/");

// Cookie with all options
setcookie(
    "user_pref",           // name
    "dark_mode",           // value
    time() + (86400 * 30), // expires in 30 days
    "/",                   // path
    "",                    // domain
    false,                 // secure (HTTPS only)
    true                   // httponly (not accessible via JS)
);
?>

Reading a Cookie

<?php
if (isset($_COOKIE['username'])) {
    echo "Welcome back, " . $_COOKIE['username'];
}
?>

Deleting a Cookie

<?php
// Set expiration to past
setcookie("username", "", time() - 3600, "/");
?>

Summary

setcookie(): Must be before output
$_COOKIE: Read cookie values
httponly: Prevent JavaScript access
secure: HTTPS only
Don't store sensitive data

What's Next?

Finally, learn about File Uploads - handling user file submissions!

Previous Sessions

Next File Uploads

Setting a Cookie

Reading a Cookie

Deleting a Cookie

Summary

What's Next?

Enjoying these tutorials?