mirror of
https://github.com/Karaka-Management/phpOMS.git
synced 2026-01-11 17:58:41 +00:00
186 lines
3.6 KiB
PHP
186 lines
3.6 KiB
PHP
<?php
|
|
/**
|
|
* Orange Management
|
|
*
|
|
* PHP Version 7.0
|
|
*
|
|
* @category TBD
|
|
* @package TBD
|
|
* @author OMS Development Team <dev@oms.com>
|
|
* @author Dennis Eichhorn <d.eichhorn@oms.com>
|
|
* @copyright 2013 Dennis Eichhorn
|
|
* @license OMS License 1.0
|
|
* @version 1.0.0
|
|
* @link http://orange-management.com
|
|
*/
|
|
namespace phpOMS\DataStorage\Session;
|
|
|
|
use phpOMS\Uri\UriFactory;
|
|
use phpOMS\Utils\RnG\StringUtils;
|
|
|
|
/**
|
|
* Http session class.
|
|
*
|
|
* @category Framework
|
|
* @package phpOMS\DataStorage\Session
|
|
* @author OMS Development Team <dev@oms.com>
|
|
* @author Dennis Eichhorn <d.eichhorn@oms.com>
|
|
* @license OMS License 1.0
|
|
* @link http://orange-management.com
|
|
* @since 1.0.0
|
|
*/
|
|
class HttpSession implements SessionInterface
|
|
{
|
|
|
|
/**
|
|
* Is session locked/already set.
|
|
*
|
|
* @var bool
|
|
* @since 1.0.0
|
|
*/
|
|
private static $isLocked = false;
|
|
|
|
/**
|
|
* Raw session data.
|
|
*
|
|
* @var array
|
|
* @since 1.0.0
|
|
*/
|
|
private $sessionData = [];
|
|
|
|
/**
|
|
* Session ID.
|
|
*
|
|
* @var string|int
|
|
* @since 1.0.0
|
|
*/
|
|
private $sid = null;
|
|
|
|
/**
|
|
* Constructor.
|
|
*
|
|
* @param int $liftetime Session life time
|
|
* @param string|int|bool $sid Session id
|
|
*
|
|
* @throws \Exception Throws this exception if the session is alrady locked for further interaction.
|
|
*
|
|
* @since 1.0.0
|
|
* @author Dennis Eichhorn <d.eichhorn@oms.com>
|
|
*/
|
|
public function __construct(int $liftetime = 3600, $sid = false)
|
|
{
|
|
if (self::$isLocked) {
|
|
throw new \Exception('Already locked');
|
|
}
|
|
|
|
if (!is_bool($sid)) {
|
|
session_id($sid);
|
|
}
|
|
|
|
session_set_cookie_params($liftetime, '/', null, false, true);
|
|
session_start();
|
|
$this->sessionData = $_SESSION;
|
|
$_SESSION = null;
|
|
|
|
$this->sid = session_id();
|
|
$this->setCsrfProtection();
|
|
|
|
self::$isLocked = true;
|
|
}
|
|
|
|
/**
|
|
* Set Csrf protection for forms.
|
|
*
|
|
* @since 1.0.0
|
|
* @author Dennis Eichhorn <d.eichhorn@oms.com>
|
|
*/
|
|
private function setCsrfProtection()
|
|
{
|
|
$this->set('UID', 0, false);
|
|
|
|
if (($CSRF = $this->get('CSRF')) === null) {
|
|
$CSRF = StringUtils::generateString(10, 16);
|
|
$this->set('CSRF', $CSRF, false);
|
|
}
|
|
|
|
UriFactory::setQuery('$CSRF', $CSRF);
|
|
}
|
|
|
|
/**
|
|
* {@inheritdoc}
|
|
*/
|
|
public function set($key, $value, bool $overwrite = true) : bool
|
|
{
|
|
if ($overwrite || !isset($this->sessionData[$key])) {
|
|
$this->sessionData[$key] = $value;
|
|
|
|
return true;
|
|
}
|
|
|
|
return false;
|
|
}
|
|
|
|
/**
|
|
* {@inheritdoc}
|
|
*/
|
|
public function get($key)
|
|
{
|
|
return $this->sessionData[$key] ?? null;
|
|
}
|
|
|
|
public static function lock()
|
|
{
|
|
self::$isLocked = true;
|
|
}
|
|
|
|
public static function isLocked()
|
|
{
|
|
return self::$isLocked;
|
|
}
|
|
|
|
/**
|
|
* {@inheritdoc}
|
|
*/
|
|
public function save()
|
|
{
|
|
|
|
}
|
|
|
|
/**
|
|
* {@inheritdoc}
|
|
*/
|
|
public function remove($key) : bool
|
|
{
|
|
if (isset($this->sessionData[$key])) {
|
|
unset($this->sessionData[$key]);
|
|
|
|
return true;
|
|
}
|
|
|
|
return false;
|
|
}
|
|
|
|
/**
|
|
* {@inheritdoc}
|
|
*/
|
|
public function getSID()
|
|
{
|
|
return $this->sid;
|
|
}
|
|
|
|
/**
|
|
* {@inheritdoc}
|
|
*/
|
|
public function setSID($sid)
|
|
{
|
|
$this->sid = $sid;
|
|
}
|
|
|
|
public function __destruct()
|
|
{
|
|
$_SESSION = $this->sessionData;
|
|
session_write_close();
|
|
}
|
|
|
|
}
|