sakura/app/Session.php

<?php
/**
 * Holds the session object.
 * @package Sakura
 */

namespace Sakura;

/**
 * Session object.
 * @package Sakura
 * @author Julian van de Groep <me@flash.moe>
 */
class Session
{
    /**
     * Session storage id.
     * @var int
     */
    public $id = 0;

    /**
     * User id.
     * @var int
     */
    public $user = 0;

    /**
     * IP address this session was started from.
     * @var string
     */
    public $ip = '';

    /**
     * Country this session was started from.
     * @var string
     */
    public $country = '';

    /**
     * User agent this session was started from.
     * @var string
     */
    public $agent = '';

    /**
     * Session secret key.
     * @var string
     */
    public $key = '';

    /**
     * Timestamp from when this session was created.
     * @var int
     */
    public $start = 0;

    /**
     * Timestamp on which this session will invalidate.
     * @var int
     */
    public $expire = 0;

    /**
     * Whether to extend the session's lifetime.
     * @var bool
     */
    public $remember = false;

    /**
     * Constructor, $id can be a number or the secret key.
     * @param mixed $id
     */
    public function __construct($id)
    {
        $data = DB::table('sessions');

        if (is_numeric($id)) {
            $data->where('session_id', $id);
        } else {
            $data->where('session_key', $id);
        }

        $data = $data->first();

        if ($data) {
            $this->id = intval($data->session_id);
            $this->user = intval($data->user_id);
            $this->ip = Net::ntop($data->user_ip);
            $this->country = $data->session_country;
            $this->agent = $data->user_agent;
            $this->key = $data->session_key;
            $this->start = intval($data->session_start);
            $this->expire = intval($data->session_expire);
            $this->remember = boolval($data->session_remember);
        }
    }

    /**
     * Create a new session
     * @param int $user
     * @param string $ip
     * @param string $country
     * @param string $agent
     * @param bool $remember
     * @param int $length
     * @return Session
     */
    public static function create($user, $ip, $country, $agent = null, $remember = false, $length = 604800)
    {
        $start = time();
        $key = bin2hex(random_bytes(64));

        $id = DB::table('sessions')
            ->insertGetId([
                'user_id' => $user,
                'user_ip' => Net::pton($ip),
                'user_agent' => $agent,
                'session_key' => $key,
                'session_start' => $start,
                'session_expire' => $start + $length,
                'session_remember' => $remember ? 1 : 0,
                'session_country' => $country,
            ]);

        return new Session($id);
    }

    /**
     * Delete this session.
     */
    public function delete()
    {
        DB::table('sessions')
            ->where('session_id', $this->id)
            ->delete();
    }

    /**
     * Validate the session.
     * @param int $user
     * @param string $ip
     * @return bool
     */
    public function validate($user, $ip = null)
    {
        // Get session from database
        $session = DB::table('sessions')
            ->where([
                'session_key' => $this->key,
                'user_id' => $user,
            ])
            ->first();

        // Check if we actually got something in return
        if (!$session) {
            return false;
        }

        // Check if the session expired
        if ($session->session_expire < time()) {
            $this->delete();
            return false;
        }

        if ($ip !== null) {
            /* completely removed the code for ip checking because it only worked with IPv4
        good thing is i can probably do CIDR based checking */
        }

        // If the remember flag is set extend the session time
        if ($session->session_remember) {
            DB::table('sessions')
                ->where('session_id', $session->session_id)
                ->update(['session_expire' => time() + 604800]);
        }

        // Return 2 if the remember flag is set and return 1 if not
        return true;
    }

    /**
     * Get the country.
     * @param bool $long
     * @return string
     */
    public function country($long = false)
    {
        return $long ? get_country_name($this->country) : $this->country;
    }
}
r20150915 (the last commit that claimed to be 15 was actually 14) Signed-off-by: Flashwave <me@flash.moe> 2015-09-15 20:37:29 +00:00			`<?php`
Added more PHPDoc stuff 2016-02-03 22:22:56 +00:00			`/**`
revised the session system 2016-08-07 14:10:27 +00:00			`* Holds the session object.`
Added more PHPDoc stuff 2016-02-03 22:22:56 +00:00			`* @package Sakura`
			`*/`

r20150915 (the last commit that claimed to be 15 was actually 14) Signed-off-by: Flashwave <me@flash.moe> 2015-09-15 20:37:29 +00:00			`namespace Sakura;`

r20151018.2 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 19:06:30 +00:00			`/**`
revised the session system 2016-08-07 14:10:27 +00:00			`* Session object.`
r20151018.2 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 19:06:30 +00:00			`* @package Sakura`
r20160202 2016-02-02 21:04:15 +00:00			`* @author Julian van de Groep <me@flash.moe>`
r20151018.2 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 19:06:30 +00:00			`*/`
r20150915 (the last commit that claimed to be 15 was actually 14) Signed-off-by: Flashwave <me@flash.moe> 2015-09-15 20:37:29 +00:00			`class Session`
			`{`
r20160202 2016-02-02 21:04:15 +00:00			`/**`
revised the session system 2016-08-07 14:10:27 +00:00			`* Session storage id.`
r20160202 2016-02-02 21:04:15 +00:00			`* @var int`
			`*/`
revised the session system 2016-08-07 14:10:27 +00:00			`public $id = 0;`
r20160202 2016-02-02 21:04:15 +00:00
			`/**`
revised the session system 2016-08-07 14:10:27 +00:00			`* User id.`
			`* @var int`
			`*/`
			`public $user = 0;`

			`/**`
			`* IP address this session was started from.`
r20160202 2016-02-02 21:04:15 +00:00			`* @var string`
			`*/`
revised the session system 2016-08-07 14:10:27 +00:00			`public $ip = '';`
r20150915 (the last commit that claimed to be 15 was actually 14) Signed-off-by: Flashwave <me@flash.moe> 2015-09-15 20:37:29 +00:00
r20160202 2016-02-02 21:04:15 +00:00			`/**`
revised the session system 2016-08-07 14:10:27 +00:00			`* Country this session was started from.`
			`* @var string`
r20160202 2016-02-02 21:04:15 +00:00			`*/`
revised the session system 2016-08-07 14:10:27 +00:00			`public $country = '';`
leaving march with a bang 2016-03-31 20:03:25 +00:00
revised the session system 2016-08-07 14:10:27 +00:00			`/**`
			`* User agent this session was started from.`
			`* @var string`
			`*/`
			`public $agent = '';`

			`/**`
			`* Session secret key.`
			`* @var string`
			`*/`
			`public $key = '';`

			`/**`
			`* Timestamp from when this session was created.`
			`* @var int`
			`*/`
			`public $start = 0;`

			`/**`
			`* Timestamp on which this session will invalidate.`
			`* @var int`
			`*/`
			`public $expire = 0;`

			`/**`
			`* Whether to extend the session's lifetime.`
			`* @var bool`
			`*/`
			`public $remember = false;`
r20151018 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 01:50:50 +00:00
r20160202 2016-02-02 21:04:15 +00:00			`/**`
revised the session system 2016-08-07 14:10:27 +00:00			`* Constructor, $id can be a number or the secret key.`
			`* @param mixed $id`
r20160202 2016-02-02 21:04:15 +00:00			`*/`
revised the session system 2016-08-07 14:10:27 +00:00			`public function __construct($id)`
r20151018 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 01:50:50 +00:00			`{`
revised the session system 2016-08-07 14:10:27 +00:00			`$data = DB::table('sessions');`
r20151018 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 01:50:50 +00:00
revised the session system 2016-08-07 14:10:27 +00:00			`if (is_numeric($id)) {`
			`$data->where('session_id', $id);`
			`} else {`
			`$data->where('session_key', $id);`
			`}`
r20151018 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 01:50:50 +00:00
revised the session system 2016-08-07 14:10:27 +00:00			`$data = $data->first();`

			`if ($data) {`
			`$this->id = intval($data->session_id);`
			`$this->user = intval($data->user_id);`
			`$this->ip = Net::ntop($data->user_ip);`
			`$this->country = $data->session_country;`
			`$this->agent = $data->user_agent;`
			`$this->key = $data->session_key;`
			`$this->start = intval($data->session_start);`
			`$this->expire = intval($data->session_expire);`
			`$this->remember = boolval($data->session_remember);`
			`}`
r20151018 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 01:50:50 +00:00			`}`

r20160202 2016-02-02 21:04:15 +00:00			`/**`
revised the session system 2016-08-07 14:10:27 +00:00			`* Create a new session`
			`* @param int $user`
			`* @param string $ip`
			`* @param string $country`
			`* @param string $agent`
			`* @param bool $remember`
			`* @param int $length`
			`* @return Session`
r20160202 2016-02-02 21:04:15 +00:00			`*/`
revised the session system 2016-08-07 14:10:27 +00:00			`public static function create($user, $ip, $country, $agent = null, $remember = false, $length = 604800)`
Second part of today's bread. 2015-11-20 12:21:12 +00:00			`{`
revised the session system 2016-08-07 14:10:27 +00:00			`$start = time();`
			`$key = bin2hex(random_bytes(64));`

			`$id = DB::table('sessions')`
			`->insertGetId([`
			`'user_id' => $user,`
			`'user_ip' => Net::pton($ip),`
			`'user_agent' => $agent,`
			`'session_key' => $key,`
			`'session_start' => $start,`
			`'session_expire' => $start + $length,`
			`'session_remember' => $remember ? 1 : 0,`
			`'session_country' => $country,`
			`]);`
Second part of today's bread. 2015-11-20 12:21:12 +00:00
revised the session system 2016-08-07 14:10:27 +00:00			`return new Session($id);`
Second part of today's bread. 2015-11-20 12:21:12 +00:00			`}`

r20160202 2016-02-02 21:04:15 +00:00			`/**`
revised the session system 2016-08-07 14:10:27 +00:00			`* Delete this session.`
r20160202 2016-02-02 21:04:15 +00:00			`*/`
revised the session system 2016-08-07 14:10:27 +00:00			`public function delete()`
r20151018 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 01:50:50 +00:00			`{`
half database update and other shit 2016-02-25 16:06:29 +00:00			`DB::table('sessions')`
revised the session system 2016-08-07 14:10:27 +00:00			`->where('session_id', $this->id)`
			`->delete();`
r20151018 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 01:50:50 +00:00			`}`

r20160202 2016-02-02 21:04:15 +00:00			`/**`
			`* Validate the session.`
revised the session system 2016-08-07 14:10:27 +00:00			`* @param int $user`
			`* @param string $ip`
			`* @return bool`
r20160202 2016-02-02 21:04:15 +00:00			`*/`
revised the session system 2016-08-07 14:10:27 +00:00			`public function validate($user, $ip = null)`
r20151018 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 01:50:50 +00:00			`{`
			`// Get session from database`
half database update and other shit 2016-02-25 16:06:29 +00:00			`$session = DB::table('sessions')`
revised the session system 2016-08-07 14:10:27 +00:00			`->where([`
			`'session_key' => $this->key,`
			`'user_id' => $user,`
			`])`
cleaned up some queries 2016-08-06 14:09:01 +00:00			`->first();`
r20151018 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 01:50:50 +00:00
			`// Check if we actually got something in return`
			`if (!$session) {`
revised the session system 2016-08-07 14:10:27 +00:00			`return false;`
r20151018 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 01:50:50 +00:00			`}`

			`// Check if the session expired`
cleaned up some queries 2016-08-06 14:09:01 +00:00			`if ($session->session_expire < time()) {`
revised the session system 2016-08-07 14:10:27 +00:00			`$this->delete();`
			`return false;`
r20151018 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 01:50:50 +00:00			`}`

more cleanup 2016-09-21 11:30:01 +00:00			`if ($ip !== null) {`
			`/* completely removed the code for ip checking because it only worked with IPv4`
first few updates in ages 2016-04-25 02:01:14 +00:00			`good thing is i can probably do CIDR based checking */`
more cleanup 2016-09-21 11:30:01 +00:00			`}`
r20151018 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 01:50:50 +00:00
			`// If the remember flag is set extend the session time`
cleaned up some queries 2016-08-06 14:09:01 +00:00			`if ($session->session_remember) {`
half database update and other shit 2016-02-25 16:06:29 +00:00			`DB::table('sessions')`
revised the session system 2016-08-07 14:10:27 +00:00			`->where('session_id', $session->session_id)`
half database update and other shit 2016-02-25 16:06:29 +00:00			`->update(['session_expire' => time() + 604800]);`
r20151018 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 01:50:50 +00:00			`}`

			`// Return 2 if the remember flag is set and return 1 if not`
revised the session system 2016-08-07 14:10:27 +00:00			`return true;`
			`}`

			`/**`
			`* Get the country.`
			`* @param bool $long`
			`* @return string`
			`*/`
			`public function country($long = false)`
			`{`
			`return $long ? get_country_name($this->country) : $this->country;`
r20151018 Signed-off-by: Flashwave <me@flash.moe> 2015-10-18 01:50:50 +00:00			`}`
r20150915 (the last commit that claimed to be 15 was actually 14) Signed-off-by: Flashwave <me@flash.moe> 2015-09-15 20:37:29 +00:00			`}`