Context Navigation

source: trunk/include/functions_session.inc.php @ 17699

Last change on this file since 17699 was 12922, checked in by mistic100, 13 years ago
update Piwigo headers to 2012, last change before the expected (or not) apocalypse
Property svn:eol-style set to `LF`
File size: 6.2 KB

Rev	Line
[2]	1	<?php
[362]	2	// +-----------------------------------------------------------------------+
[8728]	3	// \| Piwigo - a PHP based photo gallery \|
[2297]	4	// +-----------------------------------------------------------------------+
[12922]	5	// \| Copyright(C) 2008-2012 Piwigo Team http://piwigo.org \|
[2297]	6	// \| Copyright(C) 2003-2008 PhpWebGallery Team http://phpwebgallery.net \|
	7	// \| Copyright(C) 2002-2003 Pierrick LE GALL http://le-gall.net/pierrick \|
	8	// +-----------------------------------------------------------------------+
	9	// \| This program is free software; you can redistribute it and/or modify \|
	10	// \| it under the terms of the GNU General Public License as published by \|
	11	// \| the Free Software Foundation \|
	12	// \| \|
	13	// \| This program is distributed in the hope that it will be useful, but \|
	14	// \| WITHOUT ANY WARRANTY; without even the implied warranty of \|
	15	// \| MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU \|
	16	// \| General Public License for more details. \|
	17	// \| \|
	18	// \| You should have received a copy of the GNU General Public License \|
	19	// \| along with this program; if not, write to the Free Software \|
	20	// \| Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, \|
	21	// \| USA. \|
	22	// +-----------------------------------------------------------------------+
[2]	23
[1013]	24	// The function generate_key creates a string with pseudo random characters.
	25	// the size of the string depends on the $conf['session_id_size'].
	26	// Characters used are a-z A-Z and numerical values. Examples :
	27	// "Er4Tgh6", "Rrp08P", "54gj"
	28	// input : none (using global variable)
	29	// output : $key
	30	function generate_key($size)
	31	{
	32	global $conf;
	33
	34	$md5 = md5(substr(microtime(), 2, 6));
	35	$init = '';
	36	for ( $i = 0; $i < strlen( $md5 ); $i++ )
	37	{
	38	if ( is_numeric( $md5[$i] ) ) $init.= $md5[$i];
	39	}
	40	$init = substr( $init, 0, 8 );
	41	mt_srand( $init );
	42	$key = '';
	43	for ( $i = 0; $i < $size; $i++ )
	44	{
	45	$c = mt_rand( 0, 2 );
	46	if ( $c == 0 ) $key .= chr( mt_rand( 65, 90 ) );
	47	else if ( $c == 1 ) $key .= chr( mt_rand( 97, 122 ) );
	48	else $key .= mt_rand( 0, 9 );
	49	}
	50	return $key;
	51	}
	52
[1063]	53	if (isset($conf['session_save_handler'])
[1013]	54	and ($conf['session_save_handler'] == 'db')
[1063]	55	and defined('PHPWG_INSTALLED'))
[1007]	56	{
[1063]	57	session_set_save_handler('pwg_session_open',
[1007]	58	'pwg_session_close',
	59	'pwg_session_read',
	60	'pwg_session_write',
	61	'pwg_session_destroy',
	62	'pwg_session_gc'
	63	);
[1217]	64	if ( function_exists('ini_set') )
	65	{
	66	ini_set('session.use_cookies', $conf['session_use_cookies']);
	67	ini_set('session.use_only_cookies', $conf['session_use_only_cookies']);
	68	ini_set('session.use_trans_sid', intval($conf['session_use_trans_sid']));
[2757]	69	ini_set('session.cookie_httponly', 1);
[1217]	70	}
[1493]	71	session_name($conf['session_name']);
	72	session_set_cookie_params(0, cookie_path());
[4781]	73	register_shutdown_function('session_write_close');
[1004]	74	}
	75
[1010]	76	/**
	77	* returns true; used when the session_start() function is called
	78	*
	79	* @params not use but useful for php engine
	80	*/
[1063]	81	function pwg_session_open($path, $name)
[2]	82	{
[1004]	83	return true;
	84	}
[45]	85
[1010]	86	/**
	87	* returns true; used when the session is closed (unset($_SESSION))
	88	*
	89	*/
[1063]	90	function pwg_session_close()
[1004]	91	{
	92	return true;
[2]	93	}
[45]	94
[2521]	95	function get_remote_addr_session_hash()
	96	{
[12119]	97	if (strpos($_SERVER['REMOTE_ADDR'],':')===false)
	98	{//ipv4
	99	return vsprintf(
	100	"%02X%02X",
	101	explode('.',$_SERVER['REMOTE_ADDR'])
	102	);
	103	}
	104	return ''; //ipv6 not yet
	105	}
[3166]	106
[1010]	107	/**
	108	* this function returns
[1063]	109	* a string corresponding to the value of the variable save in the session
[1010]	110	* or an empty string when the variable doesn't exist
[1063]	111	*
[1010]	112	* @param string session id
	113	*/
[1063]	114	function pwg_session_read($session_id)
[2]	115	{
[1007]	116	$query = '
[1063]	117	SELECT data
[1010]	118	FROM '.SESSIONS_TABLE.'
[2521]	119	WHERE id = \''.get_remote_addr_session_hash().$session_id.'\'
[1010]	120	;';
[1004]	121	$result = pwg_query($query);
[1063]	122	if ($result)
[1007]	123	{
[4325]	124	$row = pwg_db_fetch_assoc($result);
[1004]	125	return $row['data'];
[1063]	126	}
	127	else
[1007]	128	{
[1004]	129	return '';
[2]	130	}
	131	}
	132
[1010]	133	/**
[1063]	134	* returns true; writes set a variable in the active session
	135	*
[1010]	136	* @param string session id
	137	* @data string value of date to be saved
	138	*/
[1063]	139	function pwg_session_write($session_id, $data)
[2]	140	{
[1007]	141	$query = '
[2900]	142	REPLACE INTO '.SESSIONS_TABLE.'
[1010]	143	(id,data,expiration)
[12767]	144	VALUES(\''.get_remote_addr_session_hash().$session_id.'\',\''.str_replace("'", "\'", $data).'\',now())
[1010]	145	;';
[2884]	146	pwg_query($query);
[1004]	147	return true;
	148	}
[808]	149
[1010]	150	/**
[1063]	151	* returns true; delete the active session
	152	*
[1010]	153	* @param string session id
	154	*/
[1063]	155	function pwg_session_destroy($session_id)
[1004]	156	{
[1007]	157	$query = '
[1063]	158	DELETE
[1010]	159	FROM '.SESSIONS_TABLE.'
[2521]	160	WHERE id = \''.get_remote_addr_session_hash().$session_id.'\'
[1010]	161	;';
[1004]	162	pwg_query($query);
	163	return true;
[2]	164	}
[45]	165
[1010]	166	/**
	167	* returns true; delete expired sessions
	168	* called each time a session is closed.
	169	*/
[1063]	170	function pwg_session_gc()
[45]	171	{
[1004]	172	global $conf;
	173
[1007]	174	$query = '
[1063]	175	DELETE
[1010]	176	FROM '.SESSIONS_TABLE.'
[6666]	177	WHERE '.pwg_db_date_to_ts('NOW()').' - '.pwg_db_date_to_ts('expiration').' > '
[1010]	178	.$conf['session_length'].'
	179	;';
[1004]	180	pwg_query($query);
	181	return true;
[45]	182	}
[1623]	183
	184
	185	/**
	186	* persistently stores a variable for the current session
	187	* currently we use standard php sessions but it might change
	188	* @return boolean true on success
	189	* @see pwg_get_session_var, pwg_unset_session_var
	190	*/
	191	function pwg_set_session_var($var, $value)
	192	{
	193	if ( !isset($_SESSION) )
	194	return false;
	195	$_SESSION['pwg_'.$var] = $value;
	196	return true;
	197	}
	198
	199	/**
	200	* retrieves the value of a persistent variable for the current session
	201	* currently we use standard php sessions but it might change
	202	* @return mixed
	203	* @see pwg_set_session_var, pwg_unset_session_var
	204	*/
	205	function pwg_get_session_var($var, $default = null)
	206	{
	207	if (isset( $_SESSION['pwg_'.$var] ) )
	208	{
	209	return $_SESSION['pwg_'.$var];
	210	}
	211	return $default;
	212	}
	213
	214	/**
	215	* deletes a persistent variable for the current session
	216	* currently we use standard php sessions but it might change
	217	* @return boolean true on success
	218	* @see pwg_set_session_var, pwg_get_session_var
	219	*/
	220	function pwg_unset_session_var($var)
	221	{
	222	if ( !isset($_SESSION) )
	223	return false;
	224	unset( $_SESSION['pwg_'.$var] );
	225	return true;
	226	}
	227
[3166]	228	?>

Note: See TracBrowser for help on using the repository browser.

Download in other formats: