Skip to content

api-reference.md

Latest commit

 

History

History
248 lines (190 loc) · 6.54 KB

api-reference.md

File metadata and controls

248 lines (190 loc) · 6.54 KB

API reference

Every public member of InitPHP\Cookies\Cookie and InitPHP\Cookies\CookieInterface. Behavioral details are linked into the Usage section.

Cookie is final. Depend on CookieInterface and compose, rather than subclass — see the FAQ.

Constructor

public function __construct(
    string $name,
    string $salt,
    array $options = [],
    ?array $source = null,
    ?callable $writer = null
);
  • $name — the browser cookie name. Trimmed; must be non-empty.
  • $salt — the HMAC secret used to sign/verify the payload. Trimmed; must be non-empty. Keep it secret and stable.
  • $options — cookie attribute overrides; only the keys you pass change. See Configuration.
  • $source — raw cookie source the payload is decoded from. Defaults to $_COOKIE. Injectable for testing.
  • $writer — low-level writer callable(string $name, string $value, array $options): bool. Defaults to a wrapper over native setcookie(). Injectable for testing.
  • Throws CookieInvalidArgumentException if $name or $salt is empty after trimming.
use InitPHP\Cookies\Cookie;

$cookie = new Cookie('app_session', getenv('COOKIE_SALT'));

has

public function has(string $key): bool;

true only when a non-expired value is stored for $key. Reading an expired key removes it as a side effect and returns false. See Basic usage.

$cookie->set('user', 'ada');
$cookie->has('user');    // true
$cookie->has('missing'); // false

get

public function get(string $key, $default = null);

Returns the stored value, or $default when the key is absent or expired (an expired entry is removed first). Scalar types are preserved across a round trip. See Basic usage.

$cookie->set('age', 42);
$cookie->get('age');             // 42 (int)
$cookie->get('missing', 'n/a');  // 'n/a'

pull

public function pull(string $key, $default = null);

Like get(), but always removes the entry afterward (read-once), whether or not it existed. See Reading and removing.

$cookie->set('flash', 'Saved!');
$cookie->pull('flash'); // 'Saved!'
$cookie->has('flash');  // false

set

public function set(string $key, $value, ?int $ttl = null): self;

Stages a single value in the working copy and returns the manager. $value must be string, bool, int, float or a numeric string. $ttl is seconds from now (null = no per-key expiry; 0 throws; a negative value is normalized via abs()). See TTL and expiry.

  • Throws CookieInvalidArgumentException if $value is not a supported scalar or $ttl is zero.
$cookie->set('user_id', 42)
       ->set('otp', '123456', 3600);

setArray

public function setArray(array $assoc, ?int $ttl = null): self;

Stages several values from an associative array that share one $ttl. Every key must be a string; every value must be a supported scalar. An empty array is a no-op (it does not mark the state changed). Returns the manager.

  • Throws CookieInvalidArgumentException if a key is not a string (e.g. a list with integer keys), a value is not scalar, or $ttl is zero.
$cookie->setArray(['theme' => 'dark', 'lang' => 'en']);
$cookie->setArray(['a' => '1', 'b' => '2'], 60); // shared 60s TTL

push

public function push(string $key, $value, ?int $ttl = null);

Identical to set() except it returns the staged $value instead of the manager — convenient when assigning and storing in one expression.

  • Throws CookieInvalidArgumentException under the same conditions as set().
$token = $cookie->push('token', bin2hex(random_bytes(16)), 3600);
// $token holds the value just stored.

all

public function all(): array;

Returns every non-expired value as a key => value map. Expired entries are excluded and removed as a side effect.

$cookie->setArray(['a' => '1', 'b' => '2']);
$cookie->all(); // ['a' => '1', 'b' => '2']

remove

public function remove(string ...$key): self;

Stages the removal of one or more keys and returns the manager. Missing keys are harmless. Calling it with no arguments is a no-op that does not mark the state changed. See Reading and removing.

$cookie->remove('a');
$cookie->remove('b', 'c');

send

public function send(): bool;

Writes the staged state to the browser via the writer (native setcookie() by default). No-op (returns true, writes nothing) when nothing has changed since the last send. Must be called before any output. Returns the writer's success boolean. See Sending and lifecycle.

$cookie->set('a', '1');
$cookie->send(); // writes
$cookie->send(); // no-op, returns true

flush

public function flush(): bool;

Clears every value and marks the state changed; the next send() writes an empty, still-signed cookie (the cookie stays in the browser, carrying no entries). Returns true. See Reading and removing.

$cookie->setArray(['a' => '1']);
$cookie->flush();
$cookie->send(); // writes an empty signed cookie

destroy

public function destroy(): bool;

Immediately writes a deletion cookie (past expiry, carrying the configured path/domain) and clears the working copy. After destroy(), a subsequent send() is a no-op. Returns the writer's success boolean.

$cookie->destroy(); // tells the browser to delete the cookie now

__destruct

The destructor calls send() as a safety-net for pending changes. Prefer an explicit send() before output; the destructor may run after the body has flushed, where the write silently fails. See Sending and lifecycle.

Method summary

Method Returns Writes to browser?
has bool no (may remove expired entry in memory)
get value or default no (may remove expired entry in memory)
pull value or default no
set self no (staged)
setArray self no (staged)
push the staged value no (staged)
all array no (may remove expired entries in memory)
remove self no (staged)
send bool yes, unless no-op
flush bool no (staged; written on next send)
destroy bool yes, immediately