Is it ok to use $_SESSION['variables'] in Drupal 8?

I need a way to store temporary data for anonymous users.

Apparently this is not possible with:

\Drupal::service('user.private_tempstore')

Unless you write a custom constructor for the session management and stuff, which seems a little far-fetched to me?

I tried using

\Drupal::service('user.shared_tempstore')

But that saves the temp data for all anonymous users. So it's not linked to a single user.

Using raw $_SESSION['data'] works fine, but I'm not sure if I'm supposed to be doing this in Drupal and how safe/unsafe it is to do this?

Solution

I've been using plain PHP $_SESSION variables for a while now. Did some research on them and they should be perfectly safe to use. They're working correctly everywhere I use them and they have been working correctly for a while.

Don't think there's any issue using them in Drupal 8.

PHP and SQL Shopping Cart is Not Adding Products to Shopping Cart
How to join two tmux windows into one, as panes?
Laravel flash messages not working as expected
Using SQLAlchemy sessions with flask & concurrency problems
Spring boot embedded tomcat application session does not invalidate
What am I doing wrong with these PHP session variables?
Cannot authenticate in fresh installed Laravel 11 with MySQL/MariaDB
Laravel session data not sticking across page loads
The session cookie cannot be unprotected when ASP.NET Core 8.0 Web App runs on IIS
Node + Express Session Expiration?
Do we need encrypt session id before saving it into database
Session / token verification in custom KeystoneJS endpoint
What is the difference between getDefaultInstance() and getInstance() in Session class?
Warning: connect.session() MemoryStore is not designed for a production environment, as it will leak memory, and will not scale past a single process
Issue with back button navigation after login in Node.js Express using sessions and cookies
Why setting the cookie.secure to True in express session allows session id and data to persist?
Why does HttpServlet implement Serializable?
php session doesn't work in cli
How to make keycloak sessions survive server restarts or upgrades?
Laravel session table add additional column
Remove Item from cart in ASP.NET in stepForm
Symfony 5.2 add to session array
Express session doesn't persist if the client is on a different domain
Symfony PdoSessionHandler not working as expected with PostgreSql
Express-session creates new session every request
Viewing session variables in browsers
Appwrite Local Storage Session Issue
How can I reconnect to the browser opened by webdriver with selenium?
Session is lost and created as new in every servlet request
How to fix org.hibernate.LazyInitializationException - could not initialize proxy - no Session